0

我刚刚使用本教程在 debian9 azure VM 上完成了 ejbca 6 的部署:

https://wiki.e-odyssey.net/ejbca/french-tuto

安装成功,但是:端口 443,80 已关闭

root@ejbcaDebian9:/home/ejbca# nmap <ejbca_public_ip>

Starting Nmap 7.40 ( https://nmap.org ) at 2021-07-01 16:43 UTC
Nmap scan report for my_ip
Host is up (0.0013s latency).
Not shown: 995 filtered ports
PORT     STATE  SERVICE
22/tcp   open   ssh
80/tcp   closed http
443/tcp  closed https
8080/tcp open   http-proxy
8443/tcp open   https-alt

尝试使用 ufw 打开它们并在 azure 上添加网络入站规则但它不起作用所以我重新启动了 VM

但是,重新启动后:不再打开任何端口

pki@ejbcaDebian9:~$ netstat -lapunta (无法读取“-p”的信息:geteuid()=1001 但您应该是 root。) 活动 Internet 连接(服务器和已建立) Proto Recv-Q Send-Q 本地地址外部地址状态 PID/程序名称 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN - tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN - tcp 0 36 172.18.0.4:22 51.144.166.96:37858已建立 - tcp6 0 0 :::22 :::* 监听 - udp 0 0 0.0.0.0:68 0.0.0.0:* -

pki@ejbcaDebian9~$ ps -aux | grep jboss
pki        716  0.0  0.0  11112   928 pts/0    S+   17:04   0:00 grep jboss
pki@ejbcaDebian9~$ ps -aux | grep wildfly
pki        723  0.0  0.0  11112   996 pts/0    S+   17:05   0:00 grep wildfly

在wildfly日志中我们有这个:

2021-07-01 16:22:43,402 INFO  [org.jboss.weld.Version] (MSC service thread 1-1) WELD-000900: 2.3.5 (Final)

2021-07-01 16:22:44,737 INFO  [org.cesecore.config.ConfigurationHolder] (MSC service thread 1-3) Allow external re-configuration: false

2021-07-01 16:22:44,737 DEBUG [org.cesecore.config.ConfigurationHolder] (MSC service thread 1-3) Add resource to configuration: /conf/cesecore.properties

2021-07-01 16:22:44,758 DEBUG [org.cesecore.config.ConfigurationHolder] (MSC service thread 1-3) Added url to configuration source: vfs:/content/ejbca.ear/lib/ejbca-properties.jar/conf/cesecore.properties

root@ejbcaDebian9 /opt/wildfly/standalone/log# tail -f server.log
2021-07-01 16:44:22,523 INFO  [org.wildfly.extension.undertow] (MSC service thread 1-2) WFLYUT0008: Undertow HTTPS listener httpspub suspending

2021-07-01 16:44:22,523 INFO  [org.wildfly.extension.undertow] (MSC service thread 1-2) WFLYUT0007: Undertow HTTPS listener httpspub stopped, was bound to 0.0.0.0:8442

2021-07-01 16:44:22,523 INFO  [org.wildfly.extension.undertow] (MSC service thread 1-2) WFLYUT0008: Undertow HTTP listener http suspending

2021-07-01 16:44:22,524 INFO  [org.wildfly.extension.undertow] (MSC service thread 1-2) WFLYUT0007: Undertow HTTP listener http stopped, was bound to 0.0.0.0:8080
2021-07-01 16:44:22,537 INFO  [org.jboss.as.server.deployment] (MSC service thread 1-4) WFLYSRV0208: Stopped subdeployment (runtime-name: ra-gui.war) in 311ms
2021-07-01 16:44:22,538 INFO  [org.wildfly.extension.undertow] (MSC service thread 1-4) WFLYUT0004: Undertow 1.4.0.Final stopping

2021-07-01 16:44:22,545 INFO  [org.jboss.as.server.deployment] (MSC service thread 1-4) WFLYSRV0208: Stopped subdeployment (runtime-name: doc.war) in 319ms

2021-07-01 16:44:22,551 INFO  [org.jboss.as.server.deployment] (MSC service thread 1-1) WFLYSRV0208: Stopped subdeployment (runtime-name: adminweb.war) in 340ms

2021-07-01 16:44:22,564 INFO  [org.jboss.as.server.deployment] (MSC service thread 1-1) WFLYSRV0028: Stopped deployment ejbca.ear (runtime-name: ejbca.ear) in 352ms

2021-07-01 16:44:22,567 INFO  [org.jboss.as] (MSC service thread 1-4) WFLYSRV0050: WildFly Full 10.1.0.Final (WildFly Core 2.2.0.Final) stopped in 280ms

systemctl status wildfly 不起作用。似乎这种类型的 ejbca 设置无法让我重新启动 ejbca 或 wildfly 服务。

我想知道这是否不是持久性问题?

4

1 回答 1

0

您的日志告诉我 WildFly 已关闭。如果您进一步查看日志文件,您应该会看到关闭的某些原因(除非您按 ctrl-c)。不过,您所遵循的指南相当陈旧,使用的是早已过时的 EJBCA 版本。我建议使用最新版本的 EJBCA 而不是https://www.ejbca.org/

于 2021-07-02T05:40:08.837 回答