Creation of a local type virtual host junction
You must understand how to use the available commands so that you can create a local type virtual host junction. Some of the options include the type of junction and the local directory to junction.
A local virtual host junction (-t localtcp and -t localssl) is a mount point for specific content that is located locally on the WebSEAL server. Like the content from junctioned remote servers, local junction content is incorporated into WebSEAL's unified protected object space view.
The following options are appropriate for local virtual host junctions:
| Option | Description |
|---|---|
| –t type |
Type of junction (localtcp or localssl). Required. |
| –g vhost-label |
The -g option causes a second junction to share the protected object space as the initial junction. |
| –v vhost name[:port] |
WebSEAL selects a virtual host junction. The junction processes a request if the request's HTTP Host header matches the virtual host name and port number that is specified by the -v option. The -v option is also used to specify the value of the Host header of the request sent to the back-end server. The port number is required if the virtual host uses a non-standard port for the protocol. Standard port for TCP is 80; standard port for SSL is 443. The -v option is required for localtcp and localssl type junctions. |
| –z replica-set-name |
Optional. Specifies the replica set that sessions on the virtual host junction are managed under. The command can group or separate login sessions among multiple virtual hosts. If -z is not used to specify the replica set for the virtual host junction, the virtual host junction is automatically assigned to a replica set. The replica set matches its virtual host name. For example, if the virtual host name is vhostA.example.com, the replica set is named vhostA.example.com. The replica set used for the virtual host junction must be present in the [replica-sets] stanza of the WebSEAL configuration file. See Advanced configuration for the distributed session cache. |
| –f |
Force the replacement of an existing junction. |
| –l percent-value |
Defines the soft limit for consumption of worker threads. See Per-junction allocation of worker threads for junctions. |
| –L percent-value |
Defines the hard limit for consumption of worker threads. See Per-junction allocation of worker threads for junctions. |
Example local virtual host junction:
The first command (entered as one line) creates a local virtual junction that responds to HTTP requests with Host header value of p.s.com.
pdadmin> server task default-webseald-webseal.ibm.com virtualhost create
-t localtcp -v p.s.com vhost-local-ps-httpThe second command (entered as one line) creates a local virtual junction that responds to HTTPS requests with Host header value of p.s.com:444. The -g option pairs this SSL junction with the first TCP junction so that they share protected object space.
pdadmin> server task default-webseald-webseal.ibm.com virtualhost create
-t localssl -v p.s.com:444 -g vhost-local-ps-http vhost-local-ps-https