Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Join now to unlock these features and more

Configure/run Confluence Data Center behind F5 Load balancer

Seven Cosmos
Seven Cosmos Sep 22, 2023

Hello Atlassian community,

I configure Confluence (Data center) behind an load balancer (F5-Big IP), and load balancer could detect the default port (8090) but not the 443 port (SSL)

I used following configuration in server.xml:

 

<Connector port="8090" connectionTimeout="20000" redirectPort="443"
maxThreads="48" maxPostSize="16777216" minSpareThreads="10"
enableLookups="false" acceptCount="10" URIEncoding="UTF-8"
protocol="org.apache.coyote.http11.Http11NioProtocol"/>

<Connector port="443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25"
protocol="org.apache.coyote.http11.Http11NioProtocol"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocols="TLSv1,TLSv1.1,TLSv1.2" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" SSLEnabled="true"
SSLCertificateFile="path\machinename.domain.com.crt"
SSLCertificateKeyFile="path\machinename.domain.com.key"
URIEncoding="UTF-8"/>

 

do I need to use a keystore instead of above configuration, while knowing that in local machine of this Confluence I can open admin console through 443 port (It's showing that's not trusted because it's self signed certificate)

this configuration is working well for other instance of confluence, but not for this new INFRA

Thank's

 

Answer
Watch
Like Be the first to like this
159 views

1 answer

0 votes
Bert van Dijk _TMC_nl_
Bert van Dijk _TMC_nl_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
Oct 03, 2023

Hi @Seven Cosmos ,

 

I think there is a problem with the connector 443. When you start Confluence, have a look at the catalina.out in the %confluence-install-dir%/log . There it will tell you what is wrong. A Java key store is recommended. A self signed certificate is never recommended. Maybe you need to put the root and intermediate certificates in %confluence-install-dir%/jre/lib/security/cacerts ?

View More Comments
Seven Cosmos
Seven Cosmos Oct 09, 2023

Hi @Bert van Dijk _TMC_nl_ 
Thank you for your feedback, I verrified logs and I cannot find anything, whiule knowing that I changed the method to a java Keystore but still hve the same issue

when I test with Microsoft ISS it's working fine

 

Best regards,

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

See all events