Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

JIRA Load Balancing for Data Center

Joanne
Joanne September 29, 2016

We are moving to Data Center and have it setup with the two nodes using shared home and can connect to each separate.  We now have been getting our network guys to configure our VIPs, DNS and F5 for these servers, however our F5 setup generally requires health-check files installed into a virtual directory for the application for the F5 to function which we do not have...  Although I have asked them to try to use the /status/ JIRA healthcheck test which I hope solves this problem.  However, I see docs on integrating JIRA with IIS - when does this need to happen - for SSL?  Once we get our loadbalancer up and running we want to look at using SSL in JIRA. We just have the standard install of JIRA/tomcat...

Answer
Watch
Like Be the first to like this
1798 views

1 answer

1 accepted

0 votes
Answer accepted
Petar Petrov _Appfire_
Petar Petrov (Appfire)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 29, 2016

If you have an f5 BIG-IP load balancer then it supports many types of health monitors - http is just one option, TCP is another. HTTP health monitor configuration is pretty extensive, so it should be possible to use the /status resource without much hassle.

I don't see why you would need to use IIS if you own an F5 load balancer. Regarding SSL - if you have the proper firewall setup, you should use the F5 load balancer to do SSL offloading. SSL will only be used when connecting to the load balancer, while connections from load balancer to the JIRA instances will not be encrypted - this will offload the SSL servers from doing the encryption.

View More Comments
Joanne
Joanne September 29, 2016

Thanks Petar, yes - that is how we have set it up and we have now been able to setup the healthcheck through tomcat and have it working (it was more an issue with communication with our network guys that we were using tomcat).  So now we are looking at SSL and yes we are doing it as you described and I have been trying to change the server.xml with below and changing the URL of the app to be https:\\xxxxx.xxxx.com but can't get JIRA to bring up the page just normal problem loading page errors...

secure="true" scheme="https" proxyPort="8443" proxyName="xxxx.xxxx.com"

 

Like
Joanne
Joanne September 30, 2016

SSL is setup with wildcard on server but do I still need to add something to keystore?

Like
Joanne
Joanne September 30, 2016

So we now have it working with bringing up the https:\\FQDN which is great and we can log in but then it starts serving up http pages and pages don't display so we need JIRA to send a HTTPS url, but accept HTTP connection..

Like
Joanne
Joanne October 3, 2016

We just needed to use a stream profile to send http -> https and that fixed it

Like
Manohar Goli (Dnfcs)
Manohar Goli (Dnfcs)
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
October 15, 2018

@Joanne could you share a KB if you have any that we can refer to setup Data center with LB in front and SSL on servers. We are currently in process of setting up data center with A10 hardware load balancer and trying to have https all the way from client to server. Was there anything in specific that we need to do to make sure application is listening on https from LB

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events