httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@six-group.com>
Subject RE: [users@httpd] redirect webdav traffic from dmz to server inside firewall?
Date Fri, 12 Jun 2009 14:14:15 GMT
 

> -----Original Message-----
> From: Brent Friedman [mailto:brent@brentfriedman.net] 
> Sent: Friday, June 12, 2009 2:36 PM
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] redirect webdav traffic from dmz 
> to server inside firewall?
> 
> I have a box running webdav inside a firewall.  I want to 
> provide access 
> to webdav via a box running in a dmz.  I am not certain of 
> mod_rewrite 
> is the appropriate way to accomplish this, but I haven't been able to 
> configure the dmz server properly to forward traffic for 
> webdav to the 
> other server.

Assuming a basic set-up where you have a FW with three interfaces A, B
and C, where:

A - connected to internet
B - connected to apache server in DMZ
C - connected to internal LAN where lives also the webdav server

Then you basically need to use mod_proxy to proxy requests from the DMZ
server to the webdav server. Your starting point would be
http://httpd.apache.org/docs/2.2/mod/mod_proxy.html#proxypass

Obviously, you'll need to configure the FW accordingly, but that's out
of scope here..

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

> 
> Thanks,
> 
> Brent Friedman
> 
> 
> Boyle Owen wrote:
> >> -----Original Message-----
> >> From: Brent Friedman [mailto:brent@brentfriedman.net] 
> >> Sent: Friday, June 12, 2009 12:31 AM
> >> To: users@httpd.apache.org
> >> Subject: [users@httpd] redirect webdav traffic from dmz to 
> >> server inside firewall?
> >>
> >> I have been trying to determine the proper configuration for 
> >> a problem 
> >> unsuccessfully.  I have tried many online resources, but 
> haven't been 
> >> able to put the lid on this problem.
> >>
> >> My scenario:
> >>
> >> One server is running Apache in a dmz.  Another server is 
> >> running Apache 
> >> inside a firewall, and is configured for webdav.
> >>
> >> I am trying to use mod_rewrite (or whatever config will accomplish 
> >> this), but I must be missing something.
> >>
> >> I have tried virtual hosts, .htaccess files in 
> >> /htdocs/en-us/webdav and 
> >> /htdocs/en-us/webdav/readwrite, redirect rules, etc.  Webdav is 
> >> configured on the server inside the firewall, and works fine 
> >> from inside 
> >> the firewall.  Webdav is not configured on the server in 
> the dmz.  I 
> >> have also tried using port 81 for webdav.
> >>     
> >
> > What *exactly* are you trying to do - you don't really say...
> >
> > Rgds,
> > Owen Boyle
> > Disclaimer: Any disclaimer attached to this message may be ignored. 
> >
> >   
> >> An example .htaccess file from htdocs/en-us/webdav/readwrite:
> >> Options +FollowSymlinks
> >> RewriteEngine on
> >> RewriteRule ^/$ http://192.168.124.139/webdav
> >>
> >> The two servers can ping each other successfully.
> >>
> >> It would be great to force everything to port 443, but 
> even port 80 
> >> would be good, at this point.
> >>
> >> Thanks,
> >>
> >> Brent Friedman
> >>
> >> 
> ---------------------------------------------------------------------
> >> The official User-To-User support forum of the Apache HTTP 
> >> Server Project.
> >> See <URL:http://httpd.apache.org/userslist.html> for more info.
> >> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> >> For additional commands, e-mail: users-help@httpd.apache.org
> >>
> >>
> >>     
> >  
> > This message is for the named person's use only. It may 
> contain confidential, proprietary or legally privileged 
> information. If you receive this message in error, please 
> notify the sender urgently and then immediately delete the 
> message and any copies of it from your system. Please also 
> immediately destroy any hardcopies of the message. 
> > The sender's company reserves the right to monitor all 
> e-mail communications through their networks.
> >
> > 
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> >
> >
> >   
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message