httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Roman Slezak" <ski...@hysteria.sk>
Subject Re: [users@httpd] HTTPS(SSL) reverse proxying.
Date Thu, 03 Feb 2005 14:41:49 GMT
hi my friends, but when i need https to intranet server?

>    ProxyPass / httpSSS(1)://www.backendserver.com/
>    ProxyPassReverse / httpSSS(1)://www.backendserver.com/

seems not working, always he connect to port 80 to backend, but connect to 
first server is secured.... any idea?


Roman


> Tasso:
>
>> From what I understand reverse proxying works something like this....
>>
>> Client <---- HTTP Request ----> Reverse Proxy <---- HTTP
>> Request ----> Backend Server.
>>
>> So https would work like...
>>
>> Client <---- HTTPS Request ----> Reverse Proxy <---- HTTP
>> Request ----> Backend server.
>
> This is exactly how we do it for a number of servers/applications.
>
>> So it would just be the case of enabling mod_ssl on the
>> reverse proxy and not having to worry about CONNECT  and that
>> the reverse proxy would handle all HTTPS requests?
>
> You need to have SSL set up for the external domain just as if the proxy
> server were serving up the requests directly. Then, simply add your proxy
> statements to the virtual host (IP-based, of course). Something like:
>
> <IfDefine SSL>
> <VirtualHost 123.456.789.012:443>
>    ServerName www.proxyserver.com
>    ...
>
>    SSLEngine on
>    ...
>
>    ProxyPass / http://www.backendserver.com/
>    ProxyPassReverse / http://www.backendserver.com/
> </VirtualHost>
> </IfDefine>
>
> ~ Robert


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message