Uploaded image for project: 'mod_cluster'
  1. mod_cluster
  2. MODCLUSTER-701

Provide end-to-end HTTP/2 proxy connection

    XMLWordPrintable

Details

    Description

      It should be possible to set up end-to-end HTTP/2 connections. Currently this is not possible in mod_cluster as per JBCS-327.

      It is possible to achieve end-to-end HTTP/2 proxy with mod_proxy_balancer with the following configuration for httpd and JWS Tomcat:

      httpd.conf
      LoadModule mpm_event_module modules/mod_mpm_event.so

LoadModule proxy_module modules/mod_proxy.so

LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
LoadModule slotmem_shm_module modules/mod_slotmem_shm.so
LoadModule lbmethod_byrequests_module modules/mod_lbmethod_byrequests.so

LoadModule ssl_module modules/mod_ssl.so
LoadModule http2_module modules/mod_http2.so
LoadModule proxy_http2_module modules/mod_proxy_http2.so
LoadModule proxy_http_module modules/mod_proxy_http.so

Listen 9443
<VirtualHost _default_:9443>
    Protocols h2 h2c
    ProtocolsHonorOrder on

    ProxyPass "/" "balancer://mycluster" stickysession=JSESSIONID|jsessionid scolonpathdelim=On
    ProxyPassReverse "/" "https://localhost:9443"
    <Proxy "balancer://mycluster">
       BalancerMember "h2://127.0.0.1:8081" route=node1
       BalancerMember "h2://127.0.0.1:8082" route=node2
    </Proxy>

    ServerName localhost:9443
    ServerAdmin you@example.com
    
    SSLEngine on
    SSLProxyEngine on
    SSLProxyCheckPeerName Off
    SSLVerifyClient none
    SSLProxyVerify none

    SSLCertificateFile "/etc/pki/tls/certs/localhost.crt"
    SSLCertificateKeyFile "/etc/pki/tls/private/localhost.key"

</VirtualHost>
      server.xml
      <?xml version="1.0" encoding="UTF-8"?>
<Server port="8007" shutdown="SHUTDOWN" address="localhost" >
  ...
  <Service name="Catalina">
    <Connector
      port="8081"
      protocol="org.apache.coyote.http11.Http11NioProtocol"
      maxThreads="150"
      SSLEnabled="true"
      connectionTimeout="20000"
      sslImplementationName="org.apache.tomcat.util.net.jsse.JSSEImplementation"
      keystoreFile="localhost.jks"
      keystorePass="changeit"
      address="localhost"
      >
          <UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" />
    </Connector>
    <Engine name="Catalina" defaultHost="localhost" jvmRoute="node1">
     ...
    </Engine>
  </Service>
</Server>

      Attachments

        Issue Links

          blocks

          Epic - Issue type for a big user story that needs to be broken down into a grouping of stories, tasks, and other issues that contribute to the delivery of the Epic. Created by Jira Software - do not edit or delete. JBCS-837 Provide and end-to-end HTTP/2 proxy soultion with load balancing based on application server feeback

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • New
          is related to

          Feature Request - Feature requests from customers and/or users MODCLUSTER-800 Enable mod_proxy_cluster logic to correctly use the Apache httpd websocket feature introduced in 2.4.47

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Resolved

          Activity

            People

              rhn-engineering-jclere Jean-Frederic Clere
              rhn-support-tbriceno Tomas Briceno Fernandez
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: