<?xml version="1.0" encoding="utf-8"?>
<html>
Running DSpace on Standard Ports (80 for http: and 443 for https
...
Open the standard ports 80 and 443 and the redirect ports 7780 and 7781 in this example inside the *filter block of statements followed by the redirect statements in the *nat block of statements (nat stands for network address translation) ... here is an example of that file (redhat WS3, a 2.4 linux kernel is requried, consult the excellent HOWTOS Documentation at http://www.netfilter.orgImage Removed)
Panel |
---|
- Firewall configuration written by redhat-config-securitylevel
- Manual customization of this file is not recommended.
*filter :INPUT ACCEPT 0 :FORWARD ACCEPT 0 :OUTPUT ACCEPT 0 :RH-Firewall-1-INPUT - 0 -A INPUT -j RH-Firewall-1-INPUT -A FORWARD -j RH-Firewall-1-INPUT -A RH-Firewall-1-INPUT -i lo -j ACCEPT - trust eth1 for heartbeat
-A RH-Firewall-1-INPUT -i eth1 -j ACCEPT -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall-1-INPUT -p 50 -j ACCEPT -A RH-Firewall-1-INPUT -p 51 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT - dspace ports
-A RH-Firewall-1-INPUT -m state --state NEW -d xxx.xxx.xxx.xxx -m tcp -p tcp --dport 80 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -d xxx.xxx.xxx.xxx -m tcp -p tcp --dport 443 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -d xxx.xxx.xxx.xxx -m tcp -p tcp --dport 7780 -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -d xxx.xxx.xxx.xxx -m tcp -p tcp --dport 7781 -j ACCEPT -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT *nat -A PREROUTING -d xxx.xxx.xxx.xxx -p tcp --dport 80 -j DNAT --to xxx.xxx.xxx.xxx:7780 -A PREROUTING -d xxx.xxx.xxx.xxx -p tcp --dport 443 -j DNAT --to xxx.xxx.xxx.xxx:7781 COMMIT
|
...
2. Add the following lines after the <tt><Location></tt> context:
(Note: our dspace url is: http://rose.bris.ac.ukImage Removed)
Panel |
---|
ProxyPass / http://rose.bris.ac.uk:8080/Image Removed ProxyPassReverse / http://rose.bris.ac.uk:8080/Image Removed |
3. Ensure Server Name is also set:
...
In order to display the dspace home page, not the tomcat home page when accessing http://rose.bris.ac.ukImage Removed
1. Create a page called HelloWorld.jsp in the directory below:
...
Panel |
---|
/usr/sbin/svcadm enable dspace |
...