|
If you were logged in you would be able to see more operations.
|
|
|
Magnolia
Created: 11/Dec/07 03:19 PM
Updated: 30/Jul/08 02:51 AM
|
|
| Component/s: |
None
|
| Affects Version/s: |
3.5
|
| Fix Version/s: |
None
|
|
| Resolution Date: |
14/Dec/07 06:29 PM
|
Leopard's application level firewall :
Leopard's firewall behaves significantly differently than the firewall shipped with OSX 10.4. The symptoms are that Tomcat seems unreachable ("kCFErrorDomainCFNetwork:302"), but unfortunately no log message clearly identifies the issue.
It seems the behavior was different prior to OSX 10.5.3, but at least in 10.5.4 the following seems to work:
- "allow incoming connections" for the Magnolia and Tomcat scripts (magnolia_control.sh, startup.sh, shutdown.sh, catalina.sh), as well as the Java binary (ie /System/Library/Frameworks/JavaVM.framework/Versions/1.5.0/Commands/java)
- it seems sometimes necessary to "lock" and "unlock" the firewall settings pane, so as to force it to take the new settings into account.
- if Magnolia was started, you'll have to kill it (-HUP works and shuts it down nicely) and restart.
More comments and questions
- somehow, setting the firewall too "allow all" does not seem to help.
- sudo launchctl remove com.apple.alf should remove the application-level firewall, but for some reason, this hasn't proved very useful. Will have to try again.
Log files to watch:
- /var/log/system.log
- /var/log/secure.log
- /var/log/appfirewall.log
Some interesting links:
"Max.files opened"
There might be some "max.files opened" issues, with settings which are different from Tiger(10.4), although this hasn't been reported in a while.
There is unfortunately not much we can do about this issue at the moment, as far as we know.
Feel free to comment on your own experience below and contribute tips and tricks !
|
|
Description
|
Leopard's application level firewall :
Leopard's firewall behaves significantly differently than the firewall shipped with OSX 10.4. The symptoms are that Tomcat seems unreachable ("kCFErrorDomainCFNetwork:302"), but unfortunately no log message clearly identifies the issue.
It seems the behavior was different prior to OSX 10.5.3, but at least in 10.5.4 the following seems to work:
- "allow incoming connections" for the Magnolia and Tomcat scripts (magnolia_control.sh, startup.sh, shutdown.sh, catalina.sh), as well as the Java binary (ie /System/Library/Frameworks/JavaVM.framework/Versions/1.5.0/Commands/java)
- it seems sometimes necessary to "lock" and "unlock" the firewall settings pane, so as to force it to take the new settings into account.
- if Magnolia was started, you'll have to kill it (-HUP works and shuts it down nicely) and restart.
More comments and questions
- somehow, setting the firewall too "allow all" does not seem to help.
- sudo launchctl remove com.apple.alf should remove the application-level firewall, but for some reason, this hasn't proved very useful. Will have to try again.
Log files to watch:
- /var/log/system.log
- /var/log/secure.log
- /var/log/appfirewall.log
Some interesting links:
"Max.files opened"
There might be some "max.files opened" issues, with settings which are different from Tiger(10.4), although this hasn't been reported in a while.
There is unfortunately not much we can do about this issue at the moment, as far as we know.
Feel free to comment on your own experience below and contribute tips and tricks ! |
Show » |
|
Bug
Closed
Major
Leopard (osx 10.5) issues
