Binding ZCM to a Single IP address

From CoolSolutionsWiki

Locate the server.xml

On linux, this would be located in: 

/opt/novell/zenworks/share/tomcat/conf/server.xml

On Windows, this location would be: 

C:\Program Files\Novell\ZENworks\share\tomcat\conf

Find the following section. By default, there is no address="xxx.xxx.xxx.xxx" parameter, binding ZCM services to every address. 

<!-- Define a non-SSL HTTP/1.1 Connector on port 80 -->
    <Connector port="80" maxHttpHeaderSize="8192"
               maxThreads="200" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" redirectPort="443" acceptCount="100"
               connectionTimeout="20000" disableUploadTimeout="true" />

Add the address parameter as so. 

<!-- Define a non-SSL HTTP/1.1 Connector on port 80 -->
    <Connector address="172.16.1.20" port="80" maxHttpHeaderSize="8192"
               maxThreads="200" minSpareThreads="25" maxSpareThreads="75"
               enableLookups="false" redirectPort="443" acceptCount="100"
               connectionTimeout="20000" disableUploadTimeout="true" />

Image:sticky.gif Note: Do the same for HTTPS (the section commented with "SSL HTTP/1.1 Connector on port 443"). 

    <!-- Define a SSL HTTP/1.1 Connector on port 443 -->

    <Connector address="172.16.1.20"  port="443" ...


Image:sticky.gif Note: Be sure to do the same for AJP (commented with "AJP 1.3 Connector on port 8009". 

    <!-- Define an AJP 1.3 Connector on port 8009 -->

    <Connector address="172.16.1.20"  port="8009" ...
  • After making the changes, either reboot or restart the following servers.

Linux

/etc/init.d/novell-zenserver restart

Windows

Administrative Tools -> Services -> Restart Novell ZENworks Server

Image:sticky.gif Note: For command line utilities like zman and novell-zenworks-configure to function correctly, each of the listeners must be duplicated for the loopback address, 127.0.0.1 

    <!-- Define a non-SSL HTTP/1.1 Connector on port 80 -->

    <Connector address="127.0.0.1" port="80" ...

Do the same thing for the SSL Connector on port 443 and the AJP connection on port 8009. Be sure to duplicate all of the existing listeners (between the '<Connector' and '/>' tags, particularly the HTTPS section since it has environment specific certificate information.

Retrieved from "http://wiki.novell.com/index.php/Binding_ZCM_to_a_Single_IP_address"