Missed Team ’24? Catch up on announcements here.

×
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can you help setup Jira and Confluence on Linux with Apache reverse proxy using SSL?

jmorrison_rxante
jmorrison_rxante
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
October 30, 2015

Hey all you smart people out there.  I've got a functioning JIRA and Confluence environment using Apache and reverse proxy using SSL on Windows.  We've been having a lot of problems with crashing, and I've been asked to move it to Linux.  I'm not much of a Linux guru, but I do have my RHCSA so I can get around.  I am struggling with this environment though, and I'm wondering if anyone could help out with some of the configs like the httpd.conf and server.xml.  

Also, I'm hoping I can setup a good test environment with a self-signed cert, but I haven't gotten that working yet.  Do you know if it's even possible in this config?

I have a basic JIRA install working but other than that I've been struggling.  

Thanks,

Joe

Answer
Watch
Like Be the first to like this
378 views

1 answer

0 votes
Radu Dumitriu
Radu Dumitriu
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 30, 2015

 

httpd.conf:

SSLPassPhraseDialog  builtin
SSLSessionCache         shmcb:/var/cache/mod_ssl/scache(512000)
SSLSessionCacheTimeout  300
SSLMutex default
SSLRandomSeed startup file:/dev/urandom  256
SSLRandomSeed connect builtin
SSLCryptoDevice builtin

NameVirtualHost xx.xx.xx.xx:80
NameVirtualHost xx.xx.xx.xx:443

#
# Note that in my configuration, virtual hosts on 80 do redirect on 443. 
# We do not accept http traffic. Virtual host on port 80 omitted.
#

<VirtualHost jira.foo.com:443>
   ServerName jira.foo.com

   # Easy, right ? I use AJP, but you can simply use another protocol
   ProxyPreserveHost   On

   ProxyPass / ajp://127.0.0.1:8515/
   ProxyPassReverse / ajp://127.0.0.1:8515/

   # SSL
   SSLEngine on
   SSLProtocol all -SSLv2

   SSLCertificateFile /etc/httpd/conf/server.crt
   SSLCertificateKeyFile /etc/httpd/conf/private.key
   SSLCertificateChainFile /etc/httpd/conf/intermediate.crt
   SSLCipherSuite HIGH:!aNULL:!MD5


</VirtualHost>

 

Server.xml - no real change

Anyway:

  1. Make sure JIRA is listening to the port above (in my example 8515, by default 8080)
  2. No ssl needed between HTTPD & JIRA, unless you want to be paranoid. In this case the setup will be a bit different

 

"We've been having a lot of problems with crashing" - I'm not sure that if you move to Linux, things will be suddenly ok. Most probably, you are moving the problems, too smile

Edited: some explanations

View More Comments
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
October 30, 2015

True, it's worth looking into the causes of crashes before assuming that a change of OS is going to fix it. If the problem is an addon, you're not going to find much change (although it's Linux, so it's going to be easier to debug, fix and maintain...) On the bright side, Linux does tend to crash less than Windows, and a clean setup (rather than copying everything) is far more likely to land you with a stable system.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events