httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Federico Mennite <federico.menn...@lifeware.ch>
Subject [PATCH] Prevent reverse lookups for outgoing connections in mod_proxy
Date Mon, 17 Feb 2003 13:18:21 GMT
Hi,

while setting up Apache as an ssl tunnel to some backend servers, I've 
noticed that for each new outgoing connection a reverse lookup is performed.
For serveral reasons I had to prevent this from happening (in short I 
don't wan't to bother the dns server too much), therefore I've written 
the attached patch to solve my problem.

A new boolean configuration directive named 'ReverseLookups' is added. 
It defaults to 'On'. This means that as default it behaves as usual.
The proposed solution lacks maybe a bit of flexibility but it seems to work.
Would adding a third optional parameter to the ProxyPass directive make 
more sense?

Any idea/suggestion for a better solution?

Both the issue and the solution have been tested on a linux 2.4 system 
running apache 1.3.26 and 1.3.27.

Relevant configuration options:

HostnameLookups Off
Listen 192.168.1.1:443
<VirtualHost 192.168.1.1:443>
   ServerName some.host.com
   SSLEngine On
   SSLCertificateFile    /opt/apache/conf/ssl.crt/my.crt
   SSLCertificateKeyFile /opt/apache/conf/ssl.key/my.key
   ProxyPass        / http://192.168.2.1:80/
   ProxyPassReverse / http://192.168.2.1:80/
</VirtualHost>


Best regards.

--
Federico Mennite

Mime
View raw message