LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   GNUTLS connections stails (https://www.linuxquestions.org/questions/linux-server-73/gnutls-connections-stails-944173/)

paulwintech 05-10-2012 01:25 AM
GNUTLS connections stails
 
Hi,

I have issue in gnutls config file..... I followed SSL-enabled Name-based Apache Virtual Hosts with mod_gnutls link.

Herewith i attached my ssl.conf and ssl.conf.gnu file

Issue is when i use ssl.conf.gnu file my cpu utitlization spikes to 100% wherelse if i use ssl.conf file, there was no spike.

Kindly let me know if im doing any wrong

Regards
Paulwintech

SSL.conf.gnu
##
## mod_gnutls uses the GnuTLS library to provide SSL v3, TLS 1.0 and TLS 1.1
## encryption for Apache HTTPD. It is similar to mod_ssl in purpose, but does
## not use OpenSSL.
##

## Remarks have 2 (##) pound signs, options that you might enable have only 1 (#)

## Documentation Link:
## http://www.outoforder.cc/projects/ap...d_gnutls/docs/

## Load the module into Apache.
LoadModule gnutls_module modules/mod_gnutls.so
##

## Set Certificate MIME-types, may instead be in ssl.conf
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
##

## Set TLS Cache info
GnuTLSCache dbm "/var/cache/mod_gnutls_cache"
GnuTLSCacheTimeout 300
##

## With normal SSL Websites, you need one IP Address per-site.
## This could also be 'Listen *:443', just like '*:80' is common for non-https
## This may instead be in your ssl.conf file
Listen 10.251.103.159:443
##

## This may be enabled instead in your ssl.conf file
NameVirtualHost 10.251.103.159:443
##

##
## SSL Virtual Host Context
##
<VirtualHost 10.251.103.159:443>
ServerName site1.example.com
GnuTLSEnable on
GnuTLSCertificateFile /etc/pki/tls/certs/site1.crt
GnuTLSKeyFile /etc/pki/tls/private/site1.key
DocumentRoot /var/www/vhosts/site1.example.com/httpdocs
ErrorLog "|/usr/sbin/cronolog /etc/httpd/logs/ssl_site1-error_log"
CustomLog "|/usr/sbin/cronolog /etc/httpd/logs/ssl_site1-access_log" combined
</VirtualHost>

<VirtualHost 10.251.103.159:443>
ServerName site2.example.com
GnuTLSEnable on
GnuTLSCertificateFile /etc/pki/tls/certs/site2.crt
GnuTLSKeyFile /etc/pki/tls/private/site2.key
DocumentRoot /var/www/vhosts/site2.example.com/httpdocs
ErrorLog "|/usr/sbin/cronolog /etc/httpd/logs/ssl_site2-error_log"
CustomLog "|/usr/sbin/cronolog /etc/httpd/logs/ssl_site2-access_log" combined
</VirtualHost>

Include conf.d/tomcat.jkm


All times are GMT -5. The time now is 02:50 PM.