Preserving client IP w/ apache reverse proxy

We recently had a scenario where an apache reverse proxy needed to be deployed in front of a pair of tomcat servers. Due to security concerns, this reverse proxy was hosting mod_security and acting as a web application firewall (WAF) However, a critical requirement was that the tomcat applications would be able to see the … Continue reading Preserving client IP w/ apache reverse proxy

Monitoring Tomcat via JMX–Lessons Learned: Part 2

In my previous post I mentioned that the check_jmx plugin I've used for monitoring JMX does not output perfdata data, which is useful for programs such as Centreon and Nagios which use this data to graph the output of the plugin. The developers have made an excellent job with this plugin, and I hope they … Continue reading Monitoring Tomcat via JMX–Lessons Learned: Part 2

Monitoring Tomcat via JMX–Lessons Learned: Part 1

Requirement : monitoring vital Tomcat statistics such as active & idle threads, memory consumption and so on. JMX (java monitoring extensions) is quite well documented – so a google search should bring you up to speed, but in a nutshell, JMX is almost like a java-centric SNMP. Java app developers can make certain attributes such … Continue reading Monitoring Tomcat via JMX–Lessons Learned: Part 1

Tomcat configuration summary

Tomcat is one of the more involving servers to setup. It contains a rather large server.xml file that can be daunting at first. If you “break down” the massive xml file into containers however, it becomes a lot more understandable. Below is a diagram I drew up during my studies: For a better (printable) view: … Continue reading Tomcat configuration summary