We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Tomcat SSL behind a firewall

Medium Priority
2,096 Views
Last Modified: 2013-12-02
I have a Tomcat 7 acting as a web server on a windows 2008 server.  It is using a certificate from GoDaddy for SSL.  Everything works fine internally.  I have a Watchguuard 1250 NAT rule pointing to the internal address.  DNS resolves just fine.  When trying to access the site from an external location, the web pages fail to load using IE8, Firefox loads okay, and Chrome gives "Err 113 ERR_SSL_VERSION_OR_CIPHER_MISMATCH".  So I am inclined to believe that it has something to do with the SSL and Watchguard.  I have a similar server using a self-signed certificate with no problem

          <Connector protocol="org.apache.coyote.http11.Http11AprProtocol"
                   port="8080" maxThreads="200"
                   scheme="https" secure="true" SSLEnabled="true"
                   SSLCertificateFile="C:\keystore\certfile.crt"
                   SSLCertificateKeyFile="C:\keystore\keyfile"
                   SSLPassword="hpassword"
                   SSLCertificateChainFile = "C:\keystore\chainfile"
                   keyAlias="keyalias"
                   SSLProtocol="TLSv1"/>

-Daniel

Comment
Watch Question

CERTIFIED EXPERT
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview

Author

Commented:
Yes I chaned my rule from a proxy to a tcp/udp packer rule
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.