tomcat on port 80

Posted on September 16, 2008 by Marcus Pauli

You might know the situation: You’d like to run tomcat from a privileged port, but the bloody thing just won’t start. Of course, it’s java-specific. Usually, a daemon gets its port from root. Not with Java. Your possibilities are therefore somewhat cruel. let us think about the options…

  1. run it as root. that’s ugly and not secure, but quick & dirty and just works.
  2. use jsvc. this will force you to mess up the funky startup script.
  3. write a C programm or use iptables. The C-thing doesn’t work (for me). iptables… mmmh…

terrible, didn’t I tell you? Well… there’s another way:

use the good-old xinetd. the way is described here (search for xinetd) and the essence comes as followed.

If you want to set up Tomcat to handle port 80 requests on your system, you’ll need to add a xinetd configuration file for this purpose. Assuming xinetd is installed with the usual paths, you can do this by adding a file (as user root) to the /etc/xinetd.d directory. Listing 1 gives a sample configuration file for Tomcat.

Listing 1. xinetd redirect configuration

# Redirects any requests on port 80
# to port 8080 (where Tomcat is listening)
service tomcat
{
socket_type = stream
protocol = tcp
user = root
wait = no
port = 80
redirect = localhost 8080
disable = no
}

After you’ve added the configuration file, you’ll need to restart xinetd to actually activate the redirection.

cool, eh?

This entry was posted in howto, Linux, Software, Webserver and tagged . Bookmark the permalink.

4 Responses to tomcat on port 80

  1. John says:
    September 25, 2008 at 7:38 am

    I have my tomcat in /home/userName/applications/tomcat6

    your code said
    service tomcat
    { …

    does that means “xinetd redirect configuration” will actually works automatically without knowing where tomcat is installed?

  2. wandzeitung says:
    December 14, 2008 at 3:22 pm

    Hi John,

    No. The code says «redirect = localhost 8080», so everything’s being forwarded to this host:port (here localhost:8080).

    Xinetd doesn’t want to know, WHERE tomcat (or any application) is installed. Instead, it uses just host:port to communicate.

    Cheers!

  3. Renan says:
    April 7, 2011 at 12:51 am

    I followed your advice but it only works in my local computer changing tomcat -> http as follows. I still cannot access the tomcat web server from outside
    (I am running fedora 12 and tomcat 7)

    # Redirects any requests on port 80
    # to port 8080 (where Tomcat is listening)
    service http

  4. Direktion says:
    April 7, 2011 at 10:31 am

    Hi Renan,

    have a look at /etc/xinetd.conf. There should be a section called defaults containing a option called only_from = localhost. Comment this and restart the xinet daemon. It should work then. But have a look at the other services as well: Everything is open then.

    Cheers,
    marcus

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>