Set to true if you want calls to
+
Set to request.getRemoteHost() to perform DNS lookups in
order to return the actual host name of the remote client. Set
- to false to skip the DNS lookup and return the IP
+ to
POST causes Tomcat
+ Note that any setting other than POST
+ The default is Sets the protocol to handle incoming traffic. The default value is
- Set this attribute to the name of the protocol you wish to have
returned by calls to Set this attribute to Set this attribute to HTTP/1.1 which uses an auto-switching mechanism to select
+ PATH (Windows) or LD_LIBRARY_PATH (on
most unix systems) environment variables contain the Tomcat native
@@ -147,11 +147,11 @@
Java connectors.
To use an explicit protocol rather than rely on the auto-switching
mechanism described above, the following values may be used:
- org.apache.coyote.http11.Http11Protocol -
+
- org.apache.coyote.http11.Http11NioProtocol -
+
- org.apache.coyote.http11.Http11AprProtocol -
+
Custom implementations may also be used.
Take a look at our Connector
@@ -189,18 +189,18 @@
request.getScheme(). For
- example, you would set this attribute to "https"
- for an SSL Connector. The default value is "http".
+ example, you would set this attribute to true if you wish to have
+ request.isSecure() to return true
for requests received by this Connector. You would want this on an
SSL Connector or a non SSL connector that is receiving data from a
SSL accelerator, like a crypto card, a SSL appliance or even a webserver.
- The default value is false.
false.
+ the URL. The default value is Set this attribute to true to cause Tomcat to use
+
Set this attribute to false.
Set this attribute to true to cause Tomcat to advertise
+
Set this attribute to false.
2. Also, with a lot of non keep alive connections, you
might want to increase this value as well. Default value is
- 1.
+ Controls when the socket used by the connector is bound. By default it
is bound when the connector is initiated and unbund when the connector is
- destroyed. If set to false, the socket will be bound when the
+ destroyed. If set to
The value is a comma separated list of MIME types for which HTTP
compression may be used.
- The default value is text/html,text/xml,text/plain.
The number of milliseconds during which the sockets used by this
Connector will linger when they are closed.
- The default value -1 which disables this option.
Specifies the timeout, in milliseconds, to use while a data upload is
in progress. This only takes effect if
- disableUploadTimeout is set to false.
+ disableUploadTimeout is set to
This flag allows the servlet container to use a different, usually
longer connection timeout during data upload. If not specified, this
- attribute is set to true which disables this longer timeout.
+ attribute is set to
acceptCount setting.
This setting is currently only applicable to the blocking Java connectors (AJP/HTTP).
- Default value is 10000.
+ Default value is Limits the total length of trailing headers in the last chunk of
- a chunked HTTP request. If the value is -1, no limit will be
- imposed. If not specified, the default value of 8192 will be
+ a chunked HTTP request. If the value is
The minimum number of threads always kept running. If not specified,
- the default of 10 is used.
The protocol handler caches Processor objects to speed up performance.
This setting dictates how many of these objects get cached.
- -1 means unlimited, default is 200. Set this
+
Apache-Coyote/1.1 is used. Unless you are paranoid, you won't
+ Use this attribute to enable SSL traffic on a connector.
To turn on SSL handshake/encryption/decryption on a connector
- set this value to true.
- The default value is false.
- When turning this value true you will want to set the
+ set this value to scheme and the secure attributes as well
to pass the correct request.getScheme() and
request.isSecure() values to the servlets
@@ -448,9 +448,9 @@
If set to true, the TCP_NO_DELAY option will be
+
If set to true by default.
(bool)Boolean value for the sockets so linger option (SO_LINGER).
A value for the standard attribute connectionLinger
- that is >=0 is equivalent to setting this to true.
+ that is >=0 is equivalent to setting this to false.
+ that is <0 is equivalent to setting this to soLingerTime must be set else the
JVM defaults will be used for both.
(byte)Value between 0 and 255 for the
+
(byte)Value between
NoteOn some JDK versions, setting soTrafficClass causes a problem. A work around for this @@ -544,7 +544,7 @@
(int) The timeout for a socket unlock. When a connector is stopped, it will try to release the acceptor thread by opening a connector to itself.
- The default value is 250 and the value is in milliseconds
(int)The number of threads to be used to run for the polling events.
- Default value is 1 per processor. Can't see a reason to go
+ Default value is
(int)The time in milliseconds to timeout on a select() for the
poller. This value is important, since connection clean up is done on
the same thread, so do not set this value to an extremely high one. The
- default value is 1000 milliseconds.
(bool)Whether to allow comet servlets or not. Default value is
- true.
(bool)Use this attribute to enable or disable sendfile capability.
- The default value is true.
(bool)Boolean value, whether to use direct ByteBuffers or java mapped
- ByteBuffers. Default is (int)Each connection that is opened up in Tomcat get associated with
a read ByteBuffer. This attribute controls the size of this buffer. By
- default this read buffer is sized at (int)Each connection that is opened up in Tomcat get associated with
a write ByteBuffer. This attribute controls the size of this buffer. By
- default this write buffer is sized at (int)The NIO connector uses a class called NioChannel that holds
elements linked to a socket. To reduce garbage collection, the NIO
connector caches these channel objects. This value specifies the size of
- this cache. The default value is false.
+ ByteBuffers. Default is
When you are using direct buffers, make sure you allocate the
appropriate amount of memory for the direct memory space. On Sun's JDK
that would be something like -XX:MaxDirectMemorySize=256m.
@@ -609,7 +609,7 @@
8192 bytes. For lower
+ default this read buffer is sized at 8192 bytes. For low
+ default this write buffer is sized at
@@ -630,9 +630,9 @@
500, and represents that
+ this cache. The default value is -1 for unlimited cache and 0 for no cache.
buffer size = application read buffer size +
application write buffer size + network read buffer size +
network write buffer size1024*1024*100
+ The value is in bytes, the default value is (int)Tomcat will cache SocketProcessor objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500. Other values are
- -1 for unlimited cache and 0for no cache.
(int)Tomcat will cache KeyAttachment objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500. Other values are
- -1 for unlimited cache and 0for no cache.
(int)Tomcat will cache PollerEvent objects to reduce garbage
collection. The integer value specifies how many objects to keep in the
- cache at most. The default is 500. Other values are
- -1 for unlimited cache and 0for no cache.
(int)The max selectors to be used in the pool, to reduce selector
contention. Use this option when the command line
org.apache.tomcat.util.net.NioSelectorShared value is set
- to false. Default value is 200.
org.apache.tomcat.util.net.NioSelectorShared
- value is set to false. Default value is -1 (unlimited).
+ value is set to false. Default value is The following command line options are available for the NIO
connector:
-Dorg.apache.tomcat.util.net.NioSelectorShared=true|false
- - default is true. Set this value to false if you wish to
+ - default is
oomParachute represents
the size in bytes of the parachute(the byte array). The default value is
- 1024*1024(1MB). Please note, this only works for OOM errors
+ Sets the TCP_DEFER_ACCEPT flag on the listening socket
- for this connector. The default value is true where
+ for this connector. The default value is TCP_DEFER_ACCEPT is supported by the operating system,
- otherwise it is false.
(bool)Whether to allow comet servlets or not. Default value is
- true.
(bool)Use this attribute to enable or disable sendfile capability.
- The default value is true.
You can enable SSL support for a particular instance of this
Connector by setting the SSLEnabled attribute to
- true.
You will also need to set the The certificate encoding algorithm to be used. This defaults to
scheme and secure
attributes to the values https and true
@@ -855,8 +855,8 @@
KeyManagerFactory.getDefaultAlgorithm() which returns
- SunX509 for Sun JVMs. IBM JVMs return
- IbmX509. For other vendors, consult the JVM
+
Is unsafe legacy TLS renegotiation allowed which is likely to expose
users to CVE-2009-3555, a man-in-the-middle vulnerability in the TLS
protocol that allows an attacker to inject arbitrary data into the user's
- request. If not specified, a default of false is used. This
+ request. If not specified, a default of ALL
+ the JSSE cipher naming convention. The special value of ALL is intended for testing purposes only.
Set to true if you want the SSL stack to require a
+
Set to want if you want the SSL stack to request a client
- Certificate, but not fail if one isn't presented. A false
+ Set to CLIENT-CERT authentication.
The type of keystore file to be used for the server certificate.
- If not specified, the default value is "JKS".
The class name of the SSL implementation to use. If not specified, the
- default of org.apache.tomcat.util.net.jsse.JSSEImplementation
+ default of
The version of the SSL protocol to use. If not specified,
- the default is "TLS".