openKM 6.3.4 - firewall requirements
PostPosted:Mon Feb 18, 2019 11:02 am
Hello,
I'm trying to install openKM 6.3.4 in a controlled environment where the outside connections are filtered by our firewall.
Can we have the full network requirements to do that? IP/ port to be allowed by networking ?
For the moment we have these 3 URLs allowed on port 443
telnet sourceforge.net 443
telnet download.openkm.com 443
telnet update.openkm.com 443
But the logs still shows this (which was indicated by another user as an error from firewall blocking something)
I'm trying to install openKM 6.3.4 in a controlled environment where the outside connections are filtered by our firewall.
Can we have the full network requirements to do that? IP/ port to be allowed by networking ?
For the moment we have these 3 URLs allowed on port 443
telnet sourceforge.net 443
telnet download.openkm.com 443
telnet update.openkm.com 443
But the logs still shows this (which was indicated by another user as an error from firewall blocking something)
Code: Select all
2019-02-14 05:01:01,980 [ main] INFO com.openkm.installer.Main - Running in Linux: 0.6.0-CE (build: 8fa3bfb)
2019-02-14 05:01:01,984 [ main] INFO com.openkm.installer.Main - Linux distro: rhel (Red Hat Enterprise Linux Server - 7.6)
2019-02-14 05:01:18,063 [ main] INFO com.openkm.installer.Main - Local host: l21m23114668001 (10.215.129.207)
2019-02-14 05:01:18,063 [ main] INFO com.openkm.installer.Main - Java version: 1.8.0_171
2019-02-14 05:01:18,069 [ main] INFO com.openkm.installer.Main - Free disk size: 65.0 GB
2019-02-14 05:01:18,076 [ main] INFO com.openkm.installer.Main - RAM size: 15.7 GB
2019-02-14 05:01:18,076 [ main] INFO com.openkm.installer.Main - CPU cores: 4
2019-02-14 05:01:18,222 [ main] INFO com.openkm.installer.Main - Current directory: /opt/openkm
2019-02-14 05:01:18,222 [ main] INFO com.openkm.installer.Main - Warning: no port check
2019-02-14 05:01:51,238 [ main] INFO com.openkm.installer.Main - Install version: 6.3.4
2019-02-14 05:02:07,948 [ main] INFO com.openkm.installer.b.c - Detected network interface: eth0
2019-02-14 05:02:07,949 [ main] INFO com.openkm.installer.b.c - Interface address: /fe80:0:0:0:20d:3aff:fe23:5fff%eth0
2019-02-14 05:02:07,949 [ main] INFO com.openkm.installer.b.c - Interface address: /10.***.***.***
2019-02-14 05:02:07,950 [ main] INFO com.openkm.installer.b.c - MAC address: 00:0D:3A:23:5F:FF
2019-02-14 05:02:08,295 [ main] INFO com.openkm.installer.b - ### BEGIN INSTALL ###
2019-02-14 05:02:08,296 [ main] INFO com.openkm.installer.Main - Downloading Tomcat: 7.0.61
2019-02-14 05:02:08,818 [ main] INFO com.openkm.installer.Main - ERROR: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
2019-02-14 05:02:08,820 [ main] ERROR com.openkm.installer.Main - sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1964)
at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:328)
at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:322)
at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1614)
at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)
at sun.security.ssl.Handshaker.processLoop(Handshaker.java:1052)
at sun.security.ssl.Handshaker.process_record(Handshaker.java:987)
at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1072)
at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1385)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1413)
at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1397)
at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:394)
at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:353)
at org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:134)
at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:353)
at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:380)
at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:184)
at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:88)
at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:184)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82)
at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:107)
at com.openkm.installer.b.h.a(SourceFile:1065)
at com.openkm.installer.Main.a(SourceFile:214)
at com.openkm.installer.Main.main(SourceFile:90)
Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:397)
at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:302)
at sun.security.validator.Validator.validate(Validator.java:260)
at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)
at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)
at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)
at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1596)
... 22 common frames omitted
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)
at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)
at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)
at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:392)
... 28 common frames omitted