httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Federico Mennite <>
Subject [PATCH] Prevent reverse lookups for outgoing connections in mod_proxy
Date Mon, 17 Feb 2003 13:18:21 GMT

while setting up Apache as an ssl tunnel to some backend servers, I've 
noticed that for each new outgoing connection a reverse lookup is performed.
For serveral reasons I had to prevent this from happening (in short I 
don't wan't to bother the dns server too much), therefore I've written 
the attached patch to solve my problem.

A new boolean configuration directive named 'ReverseLookups' is added. 
It defaults to 'On'. This means that as default it behaves as usual.
The proposed solution lacks maybe a bit of flexibility but it seems to work.
Would adding a third optional parameter to the ProxyPass directive make 
more sense?

Any idea/suggestion for a better solution?

Both the issue and the solution have been tested on a linux 2.4 system 
running apache 1.3.26 and 1.3.27.

Relevant configuration options:

HostnameLookups Off
   SSLEngine On
   SSLCertificateFile    /opt/apache/conf/ssl.crt/my.crt
   SSLCertificateKeyFile /opt/apache/conf/ssl.key/my.key
   ProxyPass        /
   ProxyPassReverse /

Best regards.

Federico Mennite

View raw message