編輯 /etc/tomcat9/server.xml <Service name=""Catalina">加入
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol"
SSLEnabled="true"
ciphers="ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384"
maxThreads="150" scheme="https" secure="true"
keystoreFile="server.pfx" keystorePass="password"
clientAuth="false" sslProtocol="TLSv1.2+TLSv1.3" />
IPTABLE port 443 轉向 8443
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8443
沒有留言:
張貼留言