Httpd proxy on AIX: failed to connect SSL Post: 303042275

Sponsored Content

Special Forums IP Networking Proxy Server Httpd proxy on AIX: failed to connect SSL Post 303042275 by Neo on Friday 20th of December 2019 04:10:01 AM

12-20-2019

Administrator

Code:

Description:	Controls the verbosity of the ErrorLog
Syntax:	LogLevel [module:]level [module:level] ...
Default:	LogLevel warn
Context:	server config, virtual host, directory
Status:	Core
Module:	core
Compatibility:	Per-module and per-directory configuration is available in Apache HTTP Server 2.3.6 and later
LogLevel adjusts the verbosity of the messages recorded in the error logs (see ErrorLog directive). 

The following levels are available, in order of decreasing significance:

Level	Description	Example
emerg	Emergencies - system is unusable.	"Child cannot open lock file. Exiting"
alert	Action must be taken immediately.	"getpwuid: couldn't determine user name from uid"
crit	Critical Conditions.	"socket: Failed to get a socket, exiting child"
error	Error conditions.	"Premature end of script headers"
warn	Warning conditions.	"child process 1234 did not exit, sending another SIGHUP"
notice	Normal but significant condition.	"httpd: caught SIGBUS, attempting to dump core in ..."
info	Informational.	"Server seems busy, (you may need to increase StartServers, or Min/MaxSpareServers)..."
debug	Debug-level messages	"Opening config file ..."
trace1	Trace messages	"proxy: FTP: control connection complete"
trace2	Trace messages	"proxy: CONNECT: sending the CONNECT request to the remote proxy"
trace3	Trace messages	"openssl: Handshake: start"
trace4	Trace messages	"read from buffered SSL brigade, mode 0, 17 bytes"
trace5	Trace messages	"map lookup FAILED: map=rewritemap key=keyname"
trace6	Trace messages	"cache lookup FAILED, forcing new map lookup"
trace7	Trace messages, dumping large amounts of data	"| 0000: 02 23 44 30 13 40 ac 34 df 3d bf 9a 19 49 39 15 |"
trace8	Trace messages, dumping large amounts of data	"| 0000: 02 23 44 30 13 40 ac 34 df 3d bf 9a 19 49 39 15 |"
When a particular level is specified, messages from all other levels of higher significance will be reported as well. 

E.g., when LogLevel info is specified, then messages with log levels of notice and warn will also be posted.

Using a level of at least crit is recommended.

For example:

LogLevel notice
Note
When logging to a regular file, messages of the level notice cannot be suppressed and thus are always logged. However, this doesn't apply when logging is done using syslog.

Specifying a level without a module name will reset the level for all modules to that level. 

Specifying a level with a module name will set the level for that module only. 

It is possible to use the module source file name, the module identifier, or the module identifier with the trailing _module omitted as module specification. 

This means the following three specifications are equivalent:

LogLevel info ssl:warn
LogLevel info mod_ssl.c:warn
LogLevel info ssl_module:warn
It is also possible to change the level per directory:

LogLevel info
<Directory "/usr/local/apache/htdocs/app">
  LogLevel debug
</Directory>
Per directory loglevel configuration only affects messages that are logged after the request has been parsed and that are associated

Reference:

Controls the verbosity of the ErrorLog - Apache HTTP Server Version 2.4

Neo

View Public Profile for Neo

Visit Neo's homepage!

Find all posts by Neo

7 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

How to connect to FTP server which requires SSL authentication?

Hello, I tried searching through lot of threads for a solution but couldn't fetch the exact solution, so I am creating a new thread. I am trying to connect to a FTP server 1) using a simple FTP command, it gives the error : 534 Policy requires SSL. Login failed. 2) using SFTP...

2. AIX

AIX Remote Connect Fail With �No more multiple IP addresses to connect� Error

We have a production server at a client site running AIX. And recently when users are trying to connect to it via telnet, it prompts "No more multiple IP addresses to connect". Can I know what does this error mean? and how to rectify this? Thanks.

3. Web Development

Apache proxy for web app with ssl

I have a ubuntu server running subsonic as a web app. Currently the web interface is available from port 4040 for https connections and 4141 for https connections with the context /subsonic as follows: http://mydomain:4040/subsonic https://mydomain:4141/subsonic I would like to loose the port...

4. Web Development

Http connect to proxy to websockets

I am having a hard time with this one. We have a websocket server listening on port 80 at myserver.com/wsDemo?ID=12. We need to test a client program by connecting it to this server through a proxy. I am trying nginx 1.2.7 as the proxy on port 8080, running on proxy-server. We want the client to...

5. Web Development

Httpd proxy with mod_jk,ssl only on login page using .htacess

Hi all, I have a web app with the following pages, browse.jsp and shopping.jsp. I want to protect shopping.jsp with https. (https is only between browser and apache httpd server.)The https for the shopping.jsp page will terminate at the web server. From web server to tomcat application server...

6. Programming

Failed SSL Connection Attempt

The below error message I started seeing using Ubuntu 14.04 and was wondering if the forum has seen it because I cant seem much on the net for this: perl -e 'use IO::Socket::SSL qw(debug3);IO::Socket::SSL->new(PeerAddr=>"10.0.0.100",PeerPort=> 443,Proto=>"TCP") or die $!' DEBUG:...

7. Red Hat

Proxy tunneling failed: ForbiddenUnable to establish SSL connection.

Tryied both ways curl and wget wget --no-check-certificate https://mysitet.it:61617 --2017-05-05 17:29:02-- https://mysitet.it:61617/ Connecting to myproxy:8080... connected. Proxy tunneling failed: ForbiddenUnable to establish SSL connection. curl https://mysite.it:61617 curl: (56)...

LEARN ABOUT CENTOS

httpd

HTTPD(8)							       httpd								  HTTPD(8)

NAME

       httpd - Apache Hypertext Transfer Protocol Server

SYNOPSIS

       httpd [ -d serverroot ] [ -f config ] [ -C directive ] [ -c directive ] [ -D parameter ] [ -e level ] [ -E file ] [ -k start|restart|grace-
       ful|stop|graceful-stop ] [ -R directory ] [ -h ] [ -l ] [ -L ] [ -S ] [ -t ] [ -v ] [ -V ] [ -X ] [ -M ] [ -T ]

       On Windows systems, the following additional arguments are available:

       httpd [ -k install|config|uninstall ] [ -n name ] [ -w ]

SUMMARY

       httpd is the Apache HyperText Transfer Protocol (HTTP) server program. It is designed to be run as a standalone daemon process.	When  used
       like this it will create a pool of child processes or threads to handle requests.

       In  general, httpd should not be invoked directly, but rather should be invoked via apachectl on Unix-based systems or as a service on Win-
       dows NT, 2000 and XP and as a console application on Windows 9x and ME.

OPTIONS

       -d serverroot
	      Set the initial value for the ServerRoot directive to serverroot. This can be overridden by the ServerRoot directive in the configu-
	      ration file. The default is /etc/httpd.

       -f config
	      Uses  the directives in the file config on startup. If config does not begin with a /, then it is taken to be a path relative to the
	      ServerRoot. The default is conf/httpd.conf.

       -k start|restart|graceful|stop|graceful-stop
	      Signals httpd to start, restart, or stop. See Stopping Apache httpd for more information.

       -C directive
	      Process the configuration directive before reading config files.

       -c directive
	      Process the configuration directive after reading config files.

       -D parameter
	      Sets a configuration parameter which can be used with <IfDefine> sections in  the  configuration	files  to  conditionally  skip	or
	      process commands at server startup and restart. Also can be used to set certain less-common startup parameters including -DNO_DETACH
	      (prevent the parent from forking) and -DFOREGROUND (prevent the parent from calling setsid() et al).

       -e level
	      Sets the LogLevel to level during server startup. This is useful for temporarily increasing the verbosity of the error  messages	to
	      find problems during startup.

       -E file
	      Send error messages during server startup to file.

       -h     Output a short summary of available command line options.

       -l     Output  a  list  of  modules  compiled  into the server. This will not list dynamically loaded modules included using the LoadModule
	      directive.

       -L     Output a list of directives provided by static modules, together with expected arguments and places where the  directive	is  valid.
	      Directives provided by shared modules are not listed.

       -M     Dump a list of loaded Static and Shared Modules.

       -S     Show the settings as parsed from the config file (currently only shows the virtualhost settings).

       -T (Available in 2.3.8 and later)
	      Skip document root check at startup/restart.

       -t     Run  syntax  tests for configuration files only. The program immediately exits after these syntax parsing tests with either a return
	      code of 0 (Syntax OK) or return code not equal to 0 (Syntax Error). If -D DUMP_VHOSTS is also set, details of the virtual host  con-
	      figuration will be printed. If -D DUMP_MODULES  is set, all loaded modules will be printed.

       -v     Print the version of httpd, and then exit.

       -V     Print the version and build parameters of httpd, and then exit.

       -X     Run httpd in debug mode. Only one worker will be started and the server will not detach from the console.

       The following arguments are available only on the Windows platform:

       -k install|config|uninstall
	      Install  Apache  httpd  as a Windows NT service; change startup options for the Apache httpd service; and uninstall the Apache httpd
	      service.

       -n name
	      The name of the Apache httpd service to signal.

       -w     Keep the console window open on error so that the error message can be read.

Apache HTTP Server						    2012-02-10								  HTTPD(8)