Skip to content
  • There are no suggestions because the search field is empty.

NetWitness - Jetty server java parameters

Resolution

Note: Recent guidance suggests to use a jetty.user file rather than directly altering the /etc/default/jetty. This would be documented in the System Maintenance Guides written for each major release. For example, on the 12.5.1 guide (https://community.netwitness.com/s/article/SystemMaintenanceGuidefor12-5-1  ) , it is documented on page 153

The file that is used to pass Java runtime parameters to Jetty is located in /etc/default/jetty.  This file is used to pass runtime environment parameters to Jetty on startup, such as maxmimum memory, minimum memory, the location of the java keystore, etc.

Exercise caution when tuning this file, and do so only under the recommendation of NetWitness Technical Support.  Here is an example of the file:

############################!!!WARNING!!!############################
################# Do NOT modify this file manually ##################
########### This file is generated by an automated process ##########
###### To add custom entries use /etc/default/jetty.user file #######
######### For more info, please see system maintenance guide ########
#####################################################################

# file: '/etc/default/jetty' must be present when jettyuax is installed

export LD_LIBRARY_PATH=/usr/bin/lic

JETTY_HOME=/opt/rsa/jetty9
JETTY_BASE=/opt/rsa/nw-jetty

JAVA_OPTIONS="-Djava.awt.headless=true -Dcom.rsa.netwitness.carlos.LOG_ENABLE_SYSOUT=true -Xms6G -Xmx8G -XX:MaxMetaspaceSize=512m -Djdk.tls.ephemeralDHKeySize=2048 -Djava.security.egd=file:/dev/./urandom -Djavax.net.ssl.keyStore=/etc/pki/nw/carlos/rsa-nw-sa-server.p12 -Djavax.net.ssl.keyStoreType=PKCS12"

JAVA_OPTIONS="${JAVA_OPTIONS} -XX:+OptimizeStringConcat -XX:+UseLargePages -XX:+UseG1GC -Dnetworkaddress.cache.ttl=30"

JAVA_OPTIONS="${JAVA_OPTIONS} --add-opens=java.base/java.lang.reflect=ALL-UNNAMED --add-opens=java.base/java.lang=ALL-UNNAMED --add-opens=java.base/java.util.concurrent=ALL-UNNAMED --add-opens=java.base/java.util=ALL-UNNAMED --add-opens=java.base/java.io=ALL-UNNAMED --add-opens=java.base/sun.nio.fs=ALL-UNNAMED"

JAVA_OPTIONS="${JAVA_OPTIONS} -Drsa.primary.host=true "
JAVA_OPTIONS="${JAVA_OPTIONS} -Djetty.ssl.port=7000 "
JAVA_OPTIONS="${JAVA_OPTIONS} -Djetty.httpConfig.securePort=7000 "
JAVA_OPTIONS="${JAVA_OPTIONS} -Dorg.eclipse.jetty.server.Request.maxFormContentSize=500000 "
JAVA_OPTIONS="${JAVA_OPTIONS} -Djetty.deploy.scanInterval=0 "
JAVA_OPTIONS="${JAVA_OPTIONS} -Dlog4j2.formatMsgNoLookups=true "
JAVA_OPTIONS="${JAVA_OPTIONS} -Dcom.sun.jndi.cosnaming.object.trustURLCodebase=false "

[ -f /etc/default/jetty.user ] && source /etc/default/jetty.user


 


Product Details

NetWitness Product Set: NetWitness Logs & Network
NetWitness Product/Service Type:  Admin Server
NetWitness Version/Condition: 11.x, 12.x
Platform: CentOS,  AlmaLinux


Summary

What file is used to pass java runtime parameters to the Jetty server in NetWitness


Approval Reviewer Queue

Technical approval queue