httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ray Van Dolson <rvandol...@esri.com>
Subject [users@httpd] Palm Treo, Apache, mod_proxy and OWA2007
Date Thu, 15 May 2008 00:11:55 GMT
We have an Apache server (Apache 2.2.3 bundled with RHEL 5.1)
configured to act as a reverse proxy for OWA2007 which sits inside our
internal network.

Everything is working fine for the most part -- save for ActiveSync
from Palm Treo devices.  These fail miserably.  I've begun
troubleshooting this but am hoping someone out there may have some
insight they could share.  I found several reference to something like
this via Google, but none of the mentioned fixes seemed to work.

Since everything is SSL'ized, I've taken a peek at the SSL stream with
Wireshark and its SSL decryption options (very slick).  I can see that
the Treo sends an OPTIONS /Microsoft-Server-ActiveSync request which is
proxied along correctly to the IIS server, a resopnse comes back and is
transmitted back to the Treo.

Subsequently, the Treo sends a:

  POST /Microsoft-Server-ActiveSync?Cmd=FolderSync&User=...

request.  This request is never proxied along to the IIS server.
Eventually things time out and the Treo gives up.  I see the following
in the error log:

  proxy: error reading status line from remote server owaserver
  proxy: Error reading from remote server returned by /Microsoft-Server-ActiveSync

I'll paste portions of my config file here with options I think are
relevant.  I can post the whole thing later if needed:

  AddDefaultCharset UTF-8
  RequestHeader unset accept-encoding
  # This is a suggested setting.
  RequestHeader set Front-End-Https "On"
  SSLProxyEngine on
  ProxyRequests off
  # This is the default setting.  Don't require a valid certificate.
  SSLProxyVerify none
  # This will preserve the Host: field in the request instead of using the
  # name in the ProxyPass line.
  ProxyPreserveHost on
  # Suggested setting.
  CacheDisable *
  RedirectMatch permanent ^/$ https://owaserver/exchange/
  RedirectMatch permanent /owa$ https://owaserver/owa/
  
  # Stuff added to troubleshoot ActiveSync
  Header unset WWW-Authenticate
  Header set WWW-Authenticate "Basic realm=\"owaserver\""

  <Location /Microsoft-Server-ActiveSync>
    ProxyPass https://owaserver/Microsoft-Server-ActiveSync
    ProxyPassReverse https://owaserver/Microsoft-Server-ActiveSync
    SetEnv force-proxy-request-1.0 1
    SetEnv proxy-nokeepalive 1
  </Location>

This config includes a few suggestions I found on the web for the
errors I was seeing.  None seemed to help.

Obviously I should try without the Proxy in the middle -- I am working
on doing this, but it will likely take a day or two to get appropriate
ports and forwarding configured on our firewalls.

Anyone have any thoughts or suggestions?  I am running with
mod_security, but have disabled it while testing this.  SELinux is also
enabled on the server, but I have placed it in Permissive mode for the
time being as well.

TIA,
Ray

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message