SELINUX – Apache Mod_proxy ‘[Error] (13)Permission Denied’ Error on RHEL

Smart Techie

We have configured apache as load balancer for two apache tomcat instances.

The tomcat instance1 is running on ajp port 8009 and the instance2 is running ajp port 8109

And the tomcat instances are running without having any errors in the log and when we send the request to individual instances , both of them are processing the requests perfectly.

When we send the requests via apache, then, all the requests are routed to instance1. and the requests are not reached to insatnce2.

When we investigated the logs of apache , we saw the below error messages.

[Thu Feb 28 08:07:08 2013] [error] (13)Permission denied: proxy: AJP: attempt to connect to 10.137.111.12:8109 (10.137.111.12) failed

[Thu Feb 28 08:07:08 2013] [error] ap_proxy_connect_backend disabling worker for (10.137.111.12)

[Thu Feb 28 08:07:08 2013] [error] proxy: AJP: failed to make connection to backend: 10.137.111.12

Here we found the root cause because of SELINUX. Here, the solution is to disable the SELINUX or change the mode from enforce to permissive.

To change the mode from enforce to permissive

setenforce 0

To disable SELINUX edit the file/etc/sysconfig/selinux and change the SELINUX line to SELINUX=disabled then reboot the system

Or You can change the default policy

/usr/sbin/setsebool -P httpd_can_network_connect 1

and restarted the apache, then on wards the apache is routing the requests to both the instances.

Advertisements

I am Siva Prasad Rao Janapati. Working as a software developer. Has hands on experience on ATG Commerce(DAS/DPS/DCS), Mozu commerce, Broadleaf Commerce, Java, JEE, Spring, Play, JPA, Hibernate, Velocity, JMS, Jboss, Weblogic,Tomcat, Jetty, Apache, Apache Solr, Spring Batch, JQuery, NodeJS, SOAP, REST, MySQL, Oracle, Mongo DB, Memcached, HazelCast, Git, SVN, CVS, Ant, Maven, Gradle, Amazon Web services, Rackspace, Quartz, JMeter, Junit, Open NLP, Facebook Graph,Twitter4J, YouTube Gdata, Bazzarvoice,Yotpo, 4-Tell, Alatest, Shopzilla, Linkshare. I have hands on experience on open sources and commercial technologies.

Tagged with: , , ,
Posted in apache
3 comments on “SELINUX – Apache Mod_proxy ‘[Error] (13)Permission Denied’ Error on RHEL
  1. Yesu Raj says:

    Thanks Siva… It resolved our issue while setting up http://www.gotchya.co in AWS.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

DZone

DZone MVB

Java Code Geeks
Java Code Geeks
%d bloggers like this: