SWA - Not able to redirect to https

[eM]

Hello Guys!

I'm not able to redirect from http:// to https://. It worked once, but after the restart of my webserver isn't possible to redirect and I don't know why...

As well http://my.ad.ress as, https://my.ad.ress works fine.

These are the lines in my ssl.conf:

Code: Select all

<VirtualHost *:80>
   <LocationMatch "^/sac/*">
     RewriteEngine on
     RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
   </LocationMatch>
   <LocationMatch "^/webmail/*">
     RewriteEngine on
     RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
   </LocationMatch>
</VirtualHost>

Previously I had a Beta-Version of Scalix on my FC5.

Can somebody help me? Thanks in advance

greets mario

[eM]

Oh man...164 Views and nobody could help me?

The rewrite role in my ssl.conf works really fine without scalix, but after installation of scalix my webserver isn't able to redirect anything...

Update:

OK. Here is my work arround...

I've modified this file: /etc/opt/scalix-tomcat/connector/ajp/instance-*.conf

Replace these lines...

Code: Select all

<VirtualHost *:80>
    Include /etc/opt/scalix-tomcat/connector/ajp/app-XXX.*.conf
</VirtualHost>

with the following ones...

Code: Select all

<VirtualHost *:80>
    Include /etc/opt/scalix-tomcat/connector/ajp/app-XXX.*.conf
  <LocationMatch "^/sac/*">
    RewriteEngine on
    RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
  </LocationMatch>
  <LocationMatch "^/webmail/*">
    RewriteEngine on
    RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
  </LocationMatch>
</VirtualHost>

XXX...is your hostname

greets mario

[jonwatson]

Thanks for that tip.

The Scalix wiki says to put those lines into ssl.conf, but that doesn't function on any of my SUSE machines.

Putting it into the instance-*.conf file worked.

[eM]

But pay attention, after each update you have to add these lines again...

[ScalixSupport]

Hi!

Thanks for the information. It is really appreciated.

Regards,
Subir

[florian]

eM,

the problem with this being overwritten will be resolved in the release after 11.0.4 (it was too late for 11.0.4, which we are launching very soon, so it makes it into next month's release, yet to be named).

http://bugzilla.scalix.com/show_bug.cgi?id=15165

We will see what we can do about the Wiki.

Thx,
Florian.

[eM]

Hi Subir and Flo!

It's a tiny update bug (m*cros*ft would say "it's a feature, not a bug" ), as long as I could solve this by myself...nevertheless, thanks for the support!

greets Mario

[LinuxETC]

Here is an oddity with the mix.

We have CentOS 5 on two VPS's (one is VMware base, the other is Xen based).

The VMware based one was initially Scalix 11.1.0 that was upgraded to 11.2.0 recently (the mods held too, thanks!). The VMware one is working fine with the forced http -> https mods once we added the following extra lines that were included with a Fedora Core 5 test VMware guest (guessing a slight difference with the Fedora and RHEL/CentOS methodologies doing SSL via Tomcat here):

# The following VirtualHost:443 section was added from the Fedora Core 5 files.
<VirtualHost <scalix-server-hostname>:443>
SSLEngine on
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /etc/pki/tls/certs/localhost.crt
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
Include /etc/opt/scalix-tomcat/connector/jk/app-<scalix-server-hostname>.*.conf
</VirtualHost>
<VirtualHost *:80>
# Following line was added from the Fedora Core 5 files.
Include /etc/opt/scalix-tomcat/connector/jk/app-<scalix-server-hostname>.*.conf
<LocationMatch "^/sac/*">
RewriteEngine on
RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
</LocationMatch>
<LocationMatch "^/webmail/*">
RewriteEngine on
RewriteRule ^(.*) https://%{SERVER_NAME}%{REQUEST_URI} [R,L]
</LocationMatch>
</VirtualHost>

Now with the Xen based VPS Scalix server, we are receiving "404 Not Found" for both webmail and sac. We have tried changing the VirtualHost to FQDN, IP, as well as * with the same results.

The non-force http versions do work. SSL otherwise on the server does fine as well. So this is pointing me towards something with the ReWrite area in though, but open to other suggestions.

Thoughts and comments are welcomed.

[LinuxETC]

Additional information on me re-opening this topic.

I found out that apparently installing Scalix 11.1.0 on CentOS 5 with the mods made to the /etc/opt/scalix-tomcat/connector/<ajp or jk>/instance-*.conf files and then performing an upgrade to Scalix 11.2.0 will have things work nicely.

The issue just comes up from a clean CentOS 5 installation, then a Scalix 11.2.0 installation, then making the mods noted above. Is there some difference made with Apache-Tomcat packages via Scalix between the two to cause such perhaps?

TIA.

[florian]

I am actually not aware of any changes in the tomcat or tomcat-connector packages between 11.1 and 11.2 (and in theory I should be because I should have committed to including them)...

.. if you find out what the actual resulting configuration differences are, I'll be happy to see this fixed.

Florian.