Description of problem: It took me quite a while to figure out a policy denial was breaking our web application; looks like httpd_t httpd_cache_port_t:tcp_socket { name_connect } is dontaudited. That seems like a bad idea to me; why is this dontaudited?
Why would httpd needt to connect to httpd_cache_port_t? Dan
Port 8080 (labeled with httpd_cache_port_t) is a port very commonly used by Tomcat installations; mod_jk connects Apache to Tomcat.
Fixed in selinux-policy-targeted-1.25.1-7