Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 88850 invoked from network); 2 Apr 2011 02:33:44 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 2 Apr 2011 02:33:44 -0000 Received: (qmail 91315 invoked by uid 500); 2 Apr 2011 02:33:41 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 91253 invoked by uid 500); 2 Apr 2011 02:33:41 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 91245 invoked by uid 99); 2 Apr 2011 02:33:41 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 02 Apr 2011 02:33:41 +0000 X-ASF-Spam-Status: No, hits=2.2 required=5.0 tests=FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of icicimov@gmail.com designates 209.85.220.173 as permitted sender) Received: from [209.85.220.173] (HELO mail-vx0-f173.google.com) (209.85.220.173) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 02 Apr 2011 02:33:36 +0000 Received: by vxb41 with SMTP id 41so4556668vxb.18 for ; Fri, 01 Apr 2011 19:33:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=BxRHFriVbbtUaTdxbR85S4tA1SlKKjO1h0D5dIG3IW4=; b=l7QJl8gfBGjxzBtWvBXMZWVtvbGUe70LfCFSYHulTkvK4lzszMown+GYVHa1vxajRB htWZR3NpsH1NOqQgbgH8f6xF5V/HiPgwCCEdF82NMJy96BPjXj39f/bcw5vYcocq/Vua vBRmEXj2dR2MfBPy7e4d6OHxofR0YDbCbUzXk= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=FBv4eEdUZubPcELOdDkwN8a901hg/dAIATgRgqVhRyKXnOFVHrh7wzQr5B+UCNvQNi OfspyU3HvaxYmmyfaxPw9g8iRMZ+ot4cyUJ3Uq5NpEBigPtu+VvsXUBG5t1CRsuX+BDc MnSa1hvHEspt8a6DJMcDdixMQK2P3Snxl96l0= MIME-Version: 1.0 Received: by 10.52.179.37 with SMTP id dd5mr2210441vdc.98.1301711595668; Fri, 01 Apr 2011 19:33:15 -0700 (PDT) Received: by 10.220.166.3 with HTTP; Fri, 1 Apr 2011 19:33:15 -0700 (PDT) Received: by 10.220.166.3 with HTTP; Fri, 1 Apr 2011 19:33:15 -0700 (PDT) In-Reply-To: References: Date: Sat, 2 Apr 2011 13:33:15 +1100 Message-ID: From: Igor Cicimov To: users@httpd.apache.org Content-Type: multipart/alternative; boundary=bcaec51a7fee4284e6049fe65997 Subject: Re: [users@httpd] Apache Reverse Proxy Server Accessing backend https through front https server --bcaec51a7fee4284e6049fe65997 Content-Type: text/plain; charset=ISO-8859-1 What if you change Redirect / https://backend/ to Redirect / https://sitename/ On Apr 2, 2011 5:56 AM, "Ruiyuan Jiang" wrote: Hi, all I have a Apache reverse proxy server (v2.2.17). There is a web server with backend https server. When internet users access the sit, they use http://sitename and then get redirected to https://sitename. The configuration is in the httpd-vhosts.conf ServerName sitename Redirect / https://sitename/dir1/dir2/login In my httpd-ssl.conf, for the same site I have: ServerName sitename SSLEngine on SSLProxyEngine on .... Proxypass / https://backend/ ProxyPassReverse / https://backend/ Now I get a new request that when the internet users use https://sitenamebesides http://sitename, users should be able to access the site too. I modified the virtual server in httpd-vhosts.conf: ServerName sitename Redirect / https://backend/ In httpd-ssl.conf: ServerName sitename SSLEngine on SSLProxyEngine on ... Proxypass / https://backend/ dir1/dir2/login ProxyPassReverse / https://backend/ dir1/dir2/login When I accessed the site through either http or https, I saw in error log: GET / HTTP/1.1" 302 178 GET /dir1/dir2/login HTTP/1.1" 404 - On my IE browser, when I accessed the site through http and https, I saw the same message: The error (HTTP 404 Not Found) was able to connect to the website, but the page you wanted was not found. Thanks. Ryan Jiang This message (including any attachments) is intended solely for the specific individual(s) or entity(ies) named above, and may contain legally privileged and confidential information. If you are not the intended recipient, please notify the sender immediately by replying to this message and then delete it. Any disclosure, copying, or distribution of this message, or the taking of any action based on it, by other than the intended recipient, is strictly prohibited. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org --bcaec51a7fee4284e6049fe65997 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable

What if you change
Redirect / https://backend/
to
Redirect / https://sitename/

On Apr 2, 2011 5:56 AM, "Ruiyuan Jiang&qu= ot; <Ruiyuan_Jiang@liz.com&= gt; wrote:

Hi, all

I have a Apache reverse proxy server (v2.2.17). There is a web server with = backend https server. When internet users access the sit, they use http://sitename and then get red= irected to https://sitename<= /a>. The configuration is in the httpd-vhosts.conf

<Virtualhost sitename:80>
=A0 =A0 =A0 =A0ServerName =A0 =A0 =A0sitename
=A0 =A0 =A0 =A0Redirect / =A0 =A0 =A0https://sitename/dir1/dir2/login
</Virtualhost>

In my httpd-ssl.conf, for the same site I have:

<Virtualhost sitename:443>
=A0 =A0 =A0 =A0ServerName =A0 =A0 =A0sitename
=A0 =A0 =A0 =A0SSLEngine on
=A0 =A0 =A0 =A0SSLProxyEngine on
=A0 =A0 =A0 =A0....
=A0 =A0 =A0 =A0Proxypass / =A0 =A0 =A0 =A0 =A0 =A0 https://backend/
=A0 =A0 =A0 =A0ProxyPassReverse / =A0 =A0 =A0https://backend/
</Virtualhost>


Now I get a new request that when the internet users use https://sitename besides http://sitename, users should be able to a= ccess the site too.

I modified the virtual server in httpd-vhosts.conf:

<Virtualhost sitename:80>
=A0 =A0 =A0 =A0ServerName =A0 =A0 =A0sitename
=A0 =A0 =A0 =A0Redirect / =A0 =A0 =A0https://backend/
</Virtualhost>

In httpd-ssl.conf:

<Virtualhost sitename:443>
=A0 =A0 =A0 =A0ServerName sitename
=A0 =A0 =A0 =A0SSLEngine on
=A0 =A0 =A0 =A0SSLProxyEngine on
=A0 =A0 =A0 =A0...
=A0 =A0 =A0 =A0Proxypass / =A0 =A0 =A0 =A0 =A0 =A0 https://backend/ dir1/dir2/login
=A0 =A0 =A0 =A0ProxyPassReverse / =A0 =A0 =A0https://backend/ dir1/dir2/login
</Virtualhost>

When I accessed the site through either http or https, I saw in error log:<= br>
GET / =A0 HTTP/1.1" 302 178
GET /dir1/dir2/login HTTP/1.1" 404 -


On my IE browser, when I accessed the site through http and https, I saw th= e same message:

The error (HTTP 404 Not Found) was able to connect to the website, but the = page you wanted was not found.

Thanks.

Ryan Jiang



This message (including any attachments) is intended
solely for the specific individual(s) or entity(ies) named
above, and may contain legally privileged and
confidential information. If you are not the intended
recipient, please notify the sender immediately by
replying to this message and then delete it.
Any disclosure, copying, or distribution of this message,
or the taking of any action based on it, by other than the
intended recipient, is strictly prohibited.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.<= br> See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
=A0 " =A0 from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

--bcaec51a7fee4284e6049fe65997--