Innopac Archive Index (by Date)

[ List Archives Home ] [ Thread index for 2008 ] [ Date index for 2008 ] [ Author index for 2008 ]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Date: Tue, 19 Feb 2008 14:04:31 -0800
From: "David Jones" <djones at scu dot edu>
Subject: Re: [IUG] SSLPROXYPORT Question

>>> On Tue, Feb 19, 2008 at 8:10 AM, Nathan Mealey <nathan dot mealey at simmons dot edu>
wrote:
> Pretty simple. We've also set it up with the URLs following the
> "2082:444", such as:
> 2082:444:lib.simmons.edu:library.simmons.edu

Sorry, my initial reply was incorrect, you do seem to have a web server instance on port 444. The other responses were correct that if you have SSL ports, you almost always have to restart them from the character-based system. AFAIK, the same goes for the rewriting proxy server instance of the WebPac as I've never seen changes to the WAM table take effect until after using the character-based system to restart all of the WebPac processes.

You could try setting your live wwwoptions like those below (watch line wraps!) and then restarting the proxy and web server ports via the character-based system.

SSLPORT=80:443:lib.simmons.edu:library.simmons.edu|80:443:library.simmons.edu:library.simmons.edu|2082:444:lib.simmons.edu:library.simmons.edu|2082:444:library.simmons.edu:library.simmons.edu
SSLPROXYPORT=80:443:lib.simmons.edu:library.simmons.edu|80:443:library.simmons.edu:library.simmons.edu

If you have a canonical name and an alias for your Innopac, it's always best to include both in SSLPORT, so that requests to the non-certified name get redirected to the certified name, but requests for secure pages to the certified name also get forwarded to the secure protocol even if sent via the non-secure protocol [1].

The documentation says you don't need the SSLPROXYPORT if you've defined SSLPORT, but it doesn't hurt to leave it in.

I'd be interested to know if after you make those changes if the 444 port becomes available as currently connecting to that port produces a 403 access forbidden message from your Innopac (so, it's not an external firewall issue, but maybe a Limit Network Access option).

HTH,
David

[1]
These three should end up at the same secure page (the last one):
http://sculib.scu.edu/patroninfo/0/redirect=/illj
http://oscar.scu.edu/patroninfo/0/redirect=/illj
https://sculib.scu.edu/patroninfo/0/redirect=/illj

The one that won't work:
https://oscar.scu.edu/patroninfo/0/redirect=/illj

_____________________________________________________________________
David Jones mailto:djones at scu dot edu
Library Systems Manager http://www.scu.edu/library/
University Library fax: 408-551-1805
Santa Clara University phone: 408-551-7167
500 El Camino Real
Santa Clara CA 95053-0500
_____________________________________________________________________
Reality is that which, when you stop believing in it, doesn't go away.
-- Philip K. Dick

Follow-Ups:
- [IUG] FTP/Edifact Sending issue
  - From: Teresa Saunders

Prev by Date: Re: [IUG] OCLC control number format
Next by Date: Re: [IUG] Community Reviews - No Login Page
Previous by thread: Re: [IUG] SSLPROXYPORT Question
Next by thread: [IUG] FTP/Edifact Sending issue
Index(es):
- Date
- Thread

Re: [IUG] SSLPROXYPORT Question