Apache reverse SSL proxy fronting Weblogic - weblogic

I've ran into a problem using mod_proxy/mod_ssl. The Apache HTTP server on SLES 11 SP3 64 bit, OpenSSL 1.0.1.f acts as SSL proxy to the Weblogic 10.3 running on Redhat. The mod_ssl is configured correctly - it works when proxying to to non-ssl serves. Also, the certificate on the proxy was issued with extensions allowing it to be used as both SSL client and server.
Due the regulations servers in this organisation are not allowed insecure communication, so the proxy must use SSL communicating to the application serves.
The problem occurs with SSL handshake between Apache and Weblogic. Perhaps they can't agree on ciphers? What do those 7 bytes received indicate?
[Thu Sep 18 09:32:14 2014] [debug] mod_proxy.c(1036): Running scheme https handler (attempt 0)
[Thu Sep 18 09:32:14 2014] [debug] mod_proxy_http.c(1995): proxy: HTTP: serving URL https://appdev2.example.com:8102/auth/logon.jsp?aa_param=user
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2022): proxy: HTTPS: has acquired connection for (appdev2.example.com)
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2078): proxy: connecting https://appdev2.example.com:8102/auth/logon.jsp?aa_param=user to appdev2.example.com:8102
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2236): proxy: connected /auth/logon.jsp?aa_param=user to appdev2.example.com:8102
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2487): proxy: HTTPS: fam 2 socket created to connect to appdev2.example.com
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2619): proxy: HTTPS: connection complete to 10.40.0.224:8102 (appdev2.example.com)
[Thu Sep 18 09:32:14 2014] [info] [client 10.40.0.224] Connection to child 0 established (server aaproxiedel1:443)
[Thu Sep 18 09:32:14 2014] [info] Seeding PRNG with 144 bytes of entropy
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_io.c(1090): [client 10.40.0.224] SNI extension for SSL Proxy request set to 'appdev2.example.com'
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1903): OpenSSL: Handshake: start
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: before/connect initialization
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: SSLv2/v3 write client hello A
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_io.c(1939): OpenSSL: read 7/7 bytes from BIO#994fe0 [mem: 9ea880] (BIO dump follows)
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_io.c(1872): +-------------------------------------------------------------------------+
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_io.c(1911): | 0000: 15 03 00 00 02 02 28 ......( |
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_io.c(1917): +-------------------------------------------------------------------------+
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1916): OpenSSL: Read: SSLv2/v3 read server hello A
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1940): OpenSSL: Exit: error in SSLv2/v3 read server hello A
[Thu Sep 18 09:32:14 2014] [info] [client 10.40.0.224] SSL Proxy connect failed
[Thu Sep 18 09:32:14 2014] [info] SSL Library Error: 336032784 error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
[Thu Sep 18 09:32:14 2014] [info] [client 10.40.0.224] Connection closed to child 0 with abortive shutdown (server aaproxiedel1:443)
[Thu Sep 18 09:32:14 2014] [error] (502)Unknown error 502: proxy: pass request body failed to 10.40.0.224:8102 (appdev2.example.com)
[Thu Sep 18 09:32:14 2014] [error] [client 141.1.3.134] proxy: Error during SSL Handshake with remote server returned by /auth/logon.jsp
[Thu Sep 18 09:32:14 2014] [error] proxy: pass request body failed to 10.40.0.224:8102 (appdev2.example.com) from 141.1.3.134 ()
[Thu Sep 18 09:32:14 2014] [debug] proxy_util.c(2040): proxy: HTTPS: has released connection for (appdev2.example.com)
[Thu Sep 18 09:32:14 2014] [debug] ssl_engine_kernel.c(1921): OpenSSL: Write: SSL negotiation finished successfully
[Thu Sep 18 09:32:14 2014] [info] [client 141.1.3.134] Connection closed to child 2 with standard shutdown (server aaproxiedel1:443)


Some of the things you can try is enabling "the WebLogic Plugin". This is in the Domain -> Configuration -> Web Applications and server -> General -> Advanced.. This enables all weblogic related plugins to work.
If this doesn't fix it, try to enable tunneling in protocols.
What do you see on the Weblogic logs? Both Access and the server log file?

Related

Apache OpenSSL error received

The client is hitting a URL which is secured. Client side certificate is used for authentication. But the request does not reach the application. The certificate seems correct but the request gets stucked in between. I checked other questions which suggested to check if the URL is https and not http. I checked it and the URL on which the request is sent is HTTPS itself, but still receiving the error. Below are the apache logs :
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: SSLv3 flush data
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(353): ssl_scache_shmcb_store (0xcd -> subcache 13)
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(645): insert happened at idx=0, data=0
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(647): finished insert, subcache: idx_pos/idx_used=0/1, data_pos/data_used=0/177
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(378): leaving ssl_scache_shmcb_store successfully
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1769): Inter-Process Session Cache: request=SET status=OK id=CD810458B34D865C3743B595016AE79FCA370D30AA839F4746446AA6A5319FDD timeout=300s (session caching)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1907): OpenSSL: Handshake: done
[Thu May 04 17:52:17 2017] [info] Connection: Client IP: 62.12.14.28, Protocol: TLSv1.2, Cipher: ECDHE-RSA-AES256-SHA384 (256/256 bits)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1939): OpenSSL: read 5/5 bytes from BIO#14f070 [mem: 136e7b] (BIO dump follows)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1872): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0000: 17 03 03 01 90 ..... |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1917): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1939): OpenSSL: read 400/400 bytes from BIO#14f070 [mem: 136e80] (BIO dump follows)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1872): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0000: 63 2f 9f 93 d3 34 2b ba-21 dc ef de 32 b5 f4 82 c/...4+.!...2... |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0180: 57 e6 74 2c b5 b2 7e 77-aa 01 3f 49 61 39 9e 91 W.t,..~w..?Ia9.. |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1917): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [info] Initial (No.1) HTTPS request received for child 4 (server acc-b2b.kpn-wholesale.com:443)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(500): [client 62.12.14.28] Changed client verification type will force renegotiation
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1596): [client 62.12.14.28] filling buffer, max size 131072 bytes
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1911): OpenSSL: Loop: SSLv3 flush data
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(353): ssl_scache_shmcb_store (0xcd -> subcache 13)
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(645): insert happened at idx=0, data=0
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(647): finished insert, subcache: idx_pos/idx_used=0/1, data_pos/data_used=0/177
[Thu May 04 17:52:17 2017] [debug] ssl_scache_shmcb.c(378): leaving ssl_scache_shmcb_store successfully
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1769): Inter-Process Session Cache: request=SET status=OK id=CD810458B34D865C3743B595016AE79FCA370D30AA839F4746446AA6A5319FDD timeout=300s (session caching)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(1907): OpenSSL: Handshake: done
[Thu May 04 17:52:17 2017] [info] Connection: Client IP: 62.12.14.28, Protocol: TLSv1.2, Cipher: ECDHE-RSA-AES256-SHA384 (256/256 bits)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1939): OpenSSL: read 5/5 bytes from BIO#14f070 [mem: 136e7b] (BIO dump follows)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1872): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0000: 17 03 03 01 90 ..... |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1917): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1939): OpenSSL: read 400/400 bytes from BIO#14f070 [mem: 136e80] (BIO dump follows)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1872): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0000: 63 2f 9f 93 d3 34 2b ba-21 dc ef de 32 b5 f4 82 c/...4+.!...2... |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1911): | 0180: 57 e6 74 2c b5 b2 7e 77-aa 01 3f 49 61 39 9e 91 W.t,..~w..?Ia9.. |
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1917): +-------------------------------------------------------------------------+
[Thu May 04 17:52:17 2017] [info] Initial (No.1) HTTPS request received for child 4 (server acc-b2b.kpn-wholesale.com:443)
[Thu May 04 17:52:17 2017] [debug] ssl_engine_kernel.c(500): [client 62.12.14.28] Changed client verification type will force renegotiation
[Thu May 04 17:52:17 2017] [debug] ssl_engine_io.c(1596): [client 62.12.14.28] filling buffer, max size 131072 bytes
[Thu May 04 17:54:39 2017] [debug] ssl_engine_kernel.c(1940): OpenSSL: Exit: error in SSLv2/v3 read client hello A
[Thu May 04 17:54:39 2017] [info] [client 145.7.219.13] SSL handshake failed: HTTP spoken on HTTPS port; trying to send HTML error page
[Thu May 04 17:54:39 2017] [info] SSL Library Error: 336027804 error:1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request speaking HTTP to HTTPS port!?
[Thu May 04 17:54:47 2017] [debug] ssl_engine_io.c(1950): OpenSSL: I/O error, 5 bytes expected to read on BIO#14f070 [mem: 136e7b]
[Thu May 04 17:54:47 2017] [info] [client 62.12.14.28] (70007)The timeout specified has expired: SSL input filter read failed.
[Thu May 04 17:54:47 2017] [error] [client 62.12.14.28] (70007)The timeout specified has expired: could not read request body for SSL buffer
[Thu May 04 17:54:47 2017] [error] [client 62.12.14.28] could not buffer message body to allow SSL renegotiation to proceed
[Thu May 04 17:54:47 2017] [debug] ssl_engine_kernel.c(1921): OpenSSL: Write: SSL negotiation finished successfully

I cant start apache after upgrading to yosemite

I updated to Yosemite and when I type localhost into the browser It says webpage not availible. I tried restarting apache but it still wouldn't work. Does anyone have advice?
Here are my error logs:
[Tue Oct 21 20:04:25 2014] [error] [client ::1] File does not exist: /Library/WebServer/Documents/favicon.ico
[Tue Oct 21 20:55:27 2014] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
httpd: Could not reliably determine the server's fully qualified domain name, using Cliffords-MacBook.local for ServerName
[Tue Oct 21 20:55:28 2014] [notice] Digest: generating secret for digest authentication ...
[Tue Oct 21 20:55:28 2014] [notice] Digest: done
[Tue Oct 21 20:55:28 2014] [emerg] (17)File exists: Couldn't create accept lock (/private/var/log/apache2/accept.lock.22) (5)
[Tue Oct 21 20:55:29 2014] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
httpd: Could not reliably determine the server's fully qualified domain name, using Cliffords-MacBook.local for ServerName
[Tue Oct 21 20:55:29 2014] [notice] Digest: generating secret for digest authentication ...
[Tue Oct 21 20:55:29 2014] [notice] Digest: done
[Tue Oct 21 20:55:29 2014] [warn] pid file /private/var/run/httpd.pid overwritten -- Unclean shutdown of previous Apache run?
[Tue Oct 21 20:55:29 2014] [notice] Apache/2.2.26 (Unix) DAV/2 PHP/5.5.14 mod_ssl/2.2.26 OpenSSL/0.9.8y configured -- resuming normal operations
[Tue Oct 21 20:57:10 2014] [error] [client ::1] File does not exist: /Library/WebServer/Documents/favicon.ico
[Tue Oct 21 21:35:36 2014] [notice] caught SIGTERM, shutting down

Apache httpd restart failed [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 10 months ago.
Improve this question
I'm restarting my apache server by this command "service httpd restart" and getting the following message:
Stopping httpd: [FAILED]
Starting httpd: [ OK ]
Before the problem happened, what I've done is simply to replace an old database file with new one. This database file will be used by another php file. When I did the replacement, I didn't stop httpd.
After failing to restart apache server, I surfed the web to find solution and tried the following methods.
1) Try this "netstat -lnp | grep httpd" and "lsof -i:80" to find if there's any process binding port 80. The result is none process.
2) Remove locked subsys by this "rm -f /var/lock/subsys/httpd" and restart httpd again, but the result is the same as the above message:
Stopping httpd: [FAILED]
Starting httpd: [ OK ]
3) It didn't seem to work even if I reboot the server
How to tackle this problem?
The error_log shows the following message:
[Thu Aug 09 15:10:34 2012] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Thu Aug 09 15:10:34 2012] [info] Init: Seeding PRNG with 256 bytes of entropy
[Thu Aug 09 15:10:34 2012] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Thu Aug 09 15:10:34 2012] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Thu Aug 09 15:10:34 2012] [info] Init: Initializing (virtual) servers for SSL
[Thu Aug 09 15:10:34 2012] [info] Server: Apache/2.2.3, Interface: mod_ssl/2.2.3, Library: OpenSSL/0.9.8e-fips-rhel5
[Thu Aug 09 15:10:34 2012] [notice] Digest: generating secret for digest authentication ...
[Thu Aug 09 15:10:34 2012] [notice] Digest: done
[Thu Aug 09 15:10:34 2012] [debug] util_ldap.c(2052): LDAP merging Shared Cache conf: shm=0x8541df0 rmm=0x8541e20 for VHOST: localhost.localdomain
[Thu Aug 09 15:10:34 2012] [info] APR LDAP: Built with OpenLDAP LDAP SDK
[Thu Aug 09 15:10:34 2012] [info] LDAP: SSL support available
[Thu Aug 09 15:27:26 2012] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Thu Aug 09 15:27:26 2012] [info] Init: Seeding PRNG with 256 bytes of entropy
[Thu Aug 09 15:27:26 2012] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Thu Aug 09 15:27:26 2012] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Thu Aug 09 15:27:26 2012] [info] Init: Initializing (virtual) servers for SSL
[Thu Aug 09 15:27:26 2012] [info] Server: Apache/2.2.3, Interface: mod_ssl/2.2.3, Library: OpenSSL/0.9.8e-fips-rhel5
[Thu Aug 09 15:27:26 2012] [notice] Digest: generating secret for digest authentication ...
[Thu Aug 09 15:27:26 2012] [notice] Digest: done
[Thu Aug 09 15:27:26 2012] [debug] util_ldap.c(2052): LDAP merging Shared Cache conf: shm=0x97f4df0 rmm=0x97f4e20 for VHOST: localhost.localdomain
[Thu Aug 09 15:27:26 2012] [info] APR LDAP: Built with OpenLDAP LDAP SDK
[Thu Aug 09 15:27:26 2012] [info] LDAP: SSL support available ssl_error_log:
[Thu Aug 09 15:10:34 2012] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Thu Aug 09 15:10:34 2012] [info] Init: Seeding PRNG with 256 bytes of entropy
[Thu Aug 09 15:10:34 2012] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Thu Aug 09 15:10:34 2012] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Thu Aug 09 15:10:34 2012] [info] Init: Initializing (virtual) servers for SSL
[Thu Aug 09 15:10:34 2012] [info] Server: Apache/2.2.3, Interface: mod_ssl/2.2.3, Library: OpenSSL/0.9.8e-fips-rhel5
[Thu Aug 09 15:10:34 2012] [notice] Digest: generating secret for digest authentication ...
[Thu Aug 09 15:10:34 2012] [notice] Digest: done
[Thu Aug 09 15:10:34 2012] [debug] util_ldap.c(2052): LDAP merging Shared Cache conf: shm=0x8541df0 rmm=0x8541e20 for VHOST: localhost.localdomain
[Thu Aug 09 15:10:34 2012] [info] APR LDAP: Built with OpenLDAP LDAP SDK
[Thu Aug 09 15:10:34 2012] [info] LDAP: SSL support available
[Thu Aug 09 15:27:26 2012] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Thu Aug 09 15:27:26 2012] [info] Init: Seeding PRNG with 256 bytes of entropy
[Thu Aug 09 15:27:26 2012] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Thu Aug 09 15:27:26 2012] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Thu Aug 09 15:27:26 2012] [info] Init: Initializing (virtual) servers for SSL
[Thu Aug 09 15:27:26 2012] [info] Server: Apache/2.2.3, Interface: mod_ssl/2.2.3, Library: OpenSSL/0.9.8e-fips-rhel5
[Thu Aug 09 15:27:26 2012] [notice] Digest: generating secret for digest authentication ...
[Thu Aug 09 15:27:26 2012] [notice] Digest: done
[Thu Aug 09 15:27:26 2012] [debug] util_ldap.c(2052): LDAP merging Shared Cache conf: shm=0x97f4df0 rmm=0x97f4e20 for VHOST: localhost.localdomain
[Thu Aug 09 15:27:26 2012] [info] APR LDAP: Built with OpenLDAP LDAP SDK
[Thu Aug 09 15:27:26 2012] [info] LDAP: SSL support available
Thanks for any help!

Can you enable LogLevel Debug in httpd.conf file and try starting the service. You should then be able to get more details in the error logs. By the way you seem to have SSL enabled so most probably it wouldn't be 80 but port 443. If it is an issue with SSL .. you can probably disable SSL and just enable http and check of apache starts.
Also is you apache configured to talk to any LDAP server for authentication.

Was facing the same problem but
sudo /etc/init.d/apache2 reload
works just fine for me

For me, this worked on RH Linux:
First enable Super User mode:
sudo su -
Now go to Apache (httpd) location in terminal: cd /usr/sbin
To start Apache server: httpd -k start
To stop Apache server: httpd -k stop
Check if httpd service is running: pgrep httpd
Hope it helps someone.

ssl handshake error

Can you help me
to understand the origin of this error .... 11 bytes expected !?!
tnx
ag
[Fri Dec 23 10:37:39 2011] [debug] ssl_engine_kernel.c(1769): OpenSSL: Handshake: start
[Fri Dec 23 10:37:39 2011] [debug] ssl_engine_kernel.c(1777): OpenSSL: Loop: before/accept initialization
[Fri Dec 23 10:37:39 2011] [debug] ssl_engine_io.c(1523): OpenSSL: I/O error, 11 bytes expected to read on BIO#19ed40 [mem: 1bf268]
[Fri Dec 23 10:37:39 2011] [debug] ssl_engine_kernel.c(1806): OpenSSL: Exit: error in SSLv2/v3 read client hello A

redirect an internal IP from HTTP to HTTPS with Apache

Hey all-
I have looked this up on here and Google but none of the suggestions seem to be working for me. I'm working on an internal site at this point so the endpoints are IPs vs URLs. Accessing the site via HTTPS works, but HTTP just says "Cannot establish a connection". I can't seem to find anything in the logs that explains why. I have warnings about my cert since it is self signed but I don't think that is causing it. I have tried a rewrite and a redirect both separately with no luck. I have them both commented out below, but I have tried one or the other on.
#<VirtualHost *:80>
# RewriteEngine On
# RewriteCond %{HTTPS} off
# RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
#</VirtualHost>
<VirtualHost *:443>
ServerName 192.168.xxx.xxx
ProxyRequests Off
ProxyPreserveHost On
SSLEngine On
SSLCertificateFile /etc/httpd/ssl/server.crt
SSLCertificateKeyFile /etc/httpd/ssl/server.key
ProxyPass / http://localhost:8080/
ProxyPassReverse / http://localhost:8080/
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
</VirtualHost>
#Redirect permanent http://192.168.xxx.xxx https://192.168.xxx.xxx
This is the error_log of a request. The rewrite_log remains empty.
[Wed Sep 29 17:22:17 2010] [notice] SELinux policy enabled; httpd running as context unconfined_u:system_r:httpd_t:s0
[Wed Sep 29 17:22:17 2010] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Wed Sep 29 17:22:17 2010] [info] Init: Seeding PRNG with 256 bytes of entropy
[Wed Sep 29 17:22:17 2010] [notice] SSL FIPS mode disabled
[Wed Sep 29 17:22:17 2010] [info] Loading certificate & private key of SSL-aware server
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_pphrase.c(470): unencrypted RSA private key - pass phrase not required
[Wed Sep 29 17:22:17 2010] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Wed Sep 29 17:22:17 2010] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Wed Sep 29 17:22:17 2010] [info] Init: Initializing (virtual) servers for SSL
[Wed Sep 29 17:22:17 2010] [info] Configuring server for SSL protocol
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(465): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(420): Configuring TLS extension handling
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(792): Configuring RSA server certificate
[Wed Sep 29 17:22:17 2010] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Wed Sep 29 17:22:17 2010] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(831): Configuring RSA server private key
[Wed Sep 29 17:22:17 2010] [info] mod_ssl/2.2.16 compiled against Server: Apache/2.2.16, Library: OpenSSL/1.0.0a-fips
[Wed Sep 29 17:22:17 2010] [notice] Digest: generating secret for digest authentication ...
[Wed Sep 29 17:22:17 2010] [notice] Digest: done
[Wed Sep 29 17:22:17 2010] [debug] util_ldap.c(1990): LDAP merging Shared Cache conf: shm=0x1df29a8 rmm=0x1df29d8 for VHOST: 192.168.xxx.xxx
[Wed Sep 29 17:22:17 2010] [debug] util_ldap.c(1990): LDAP merging Shared Cache conf: shm=0x1df29a8 rmm=0x1df29d8 for VHOST: jira.test.com
[Wed Sep 29 17:22:17 2010] [debug] util_ldap.c(1990): LDAP merging Shared Cache conf: shm=0x1df29a8 rmm=0x1df29d8 for VHOST: jira.test.com
[Wed Sep 29 17:22:17 2010] [info] APR LDAP: Built with OpenLDAP LDAP SDK
[Wed Sep 29 17:22:17 2010] [info] LDAP: SSL support available
[Wed Sep 29 17:22:17 2010] [info] Init: Seeding PRNG with 256 bytes of entropy
[Wed Sep 29 17:22:17 2010] [notice] SSL FIPS mode disabled
[Wed Sep 29 17:22:17 2010] [info] Loading certificate & private key of SSL-aware server
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_pphrase.c(470): unencrypted RSA private key - pass phrase not required
[Wed Sep 29 17:22:17 2010] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Wed Sep 29 17:22:17 2010] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(253): shmcb_init allocated 512000 bytes of shared memory
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(272): for 511952 bytes (512000 including header), recommending 32 subcaches, 133 indexes each
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(306): shmcb_init_memory choices follow
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(308): subcache_num = 32
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(310): subcache_size = 15996
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(312): subcache_data_offset = 2144
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(314): subcache_data_size = 13852
[Wed Sep 29 17:22:17 2010] [debug] ssl_scache_shmcb.c(316): index_num = 133
[Wed Sep 29 17:22:17 2010] [info] Shared memory session cache initialised
[Wed Sep 29 17:22:17 2010] [info] Init: Initializing (virtual) servers for SSL
[Wed Sep 29 17:22:17 2010] [info] Configuring server for SSL protocol
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(465): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(420): Configuring TLS extension handling
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(792): Configuring RSA server certificate
[Wed Sep 29 17:22:17 2010] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Wed Sep 29 17:22:17 2010] [warn] RSA server certificate CommonName (CN) `localhost' does NOT match server name!?
[Wed Sep 29 17:22:17 2010] [debug] ssl_engine_init.c(831): Configuring RSA server private key
[Wed Sep 29 17:22:17 2010] [info] mod_ssl/2.2.16 compiled against Server: Apache/2.2.16, Library: OpenSSL/1.0.0a-fips
[Wed Sep 29 17:22:17 2010] [error] avahi_entry_group_add_service_strlst("192.168.xxx.xxx") failed: Invalid host name
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6661 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6660 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6660 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6660 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6660 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6662 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6661 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6663 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6661 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6663 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6663 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6661 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6663 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6662 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6662 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6662 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6664 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6664 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6664 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6664 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6665 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [notice] Apache/2.2.16 (Unix) DAV/2 mod_ssl/2.2.16 OpenSSL/1.0.0a-fips configured -- resuming normal operations
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [info] Server built: Jul 27 2010 15:58:08
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6665 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6665 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] prefork.c(1013): AcceptMutex: sysvsem (default: sysvsem)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6665 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6666 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6666 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6666 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 1 in child 6667 for worker proxy:reverse
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 1 in child 6667 for (*)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6666 for (localhost)
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 0 in child 6667 for worker http://localhost:8080/
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1837): proxy: worker http://localhost:8080/ already initialized
[Wed Sep 29 17:22:17 2010] [debug] proxy_util.c(1934): proxy: initialized single connection worker 0 in child 6667 for (localhost)

If your first section of that file is commented out, Apache doesn't have any config telling it to listen on port 80 (http).
You need both sites running so that both will give you a response (even if the HTTP response is just "go to HTTPS")