Reverse proxy

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello,

I'm trying to configure a reverse proxy (ssl) with apache 2.2 in Debian Squeeze, but I have some problems, specially with some path absolute and with https

I'll try to detail what I have made and what I'm trying to configure
I have a server Debian Squeeze with apache2.2 + mod_proxy_html with:
    # apt-get  install libapache2-mod-proxy-html libxml2-dev
    # a2enmod proxy
    # a2enmod proxy_http
    # a2enmod proxy_html
    # a2enmod headers

After that I have configured a virtual host with:
reverse_proxy_ssl.conf
------------------------------
-------------------------------
#NameVirtualHost *:443
SSLPassPhraseDialog exec:/etc/apache2/ssl/passphrase

<VirtualHost *:443>
        ServerName domain.com
        ServerAdmin admin@xxxxxxxxxx

        SSLEngine on

        SSLProxyEngine on

        SSLCertificateFile /etc/apache2/ssl/www.domain.com.pem.crt
        SSLCertificateKeyFile /etc/apache2/ssl/www.domain.com.pem.key

   ProxyPreserveHost On

    <Proxy /intranet/>
        ProxyHTMLLogVerbose On
        ProxyHTMLURLMap     https://192.168.10.10/intranet/ /intranet/
        ProxyHTMLURLMap     / /intranet/
        #
        ProxyPass         https://192.168.10.10/intranet/
        ProxyPassReverse  https://192.168.10.10/intranet/
    </Proxy>

   <Proxy /application/>
        ProxyHTMLLogVerbose On
        ProxyHTMLURLMap     https://192.168.168.10.25/application/ /application/
        ProxyHTMLURLMap     / /application/
        #
        ProxyPass         https://192.168.10.25/application/
        ProxyPassReverse  https://192.168.10.25/application/
    </Proxy>


       ErrorLog /var/log/apache2/error.log

        # Possible values include: debug, info, notice, warn, error, crit,
        # alert, emerg.
        LogLevel warn

#       CustomLog /var/log/apache2/access.log combined
        SetEnvIf Request_URI "^/check\.txt$" dontlog
        CustomLog /var/log/apache2/access.log combined env=!dontlog
        ServerSignature On



</VirtualHost>


-------------------------------------------------------------


I'm trying to configure to allow access of our intranet from internet with a reverse proxy (apache that is located in DMZ). With this configuration domain.com/intranet works correctly and we can access to intranet, but we have one problem when from domain.com/intranet we need to use another internal application that is called from intranet with absolute path (https://192.168.10.25/application/) and from internet appears that try to access with internal ip, and this link es incorrect from external site

We only need to access from intranet to multiple internal application that are in external server and we like to restrict to minimal access from internet. All the application that are in the smae server of intranet are working.

The second problem is with https and reverse proxy in our firewall appears some errors with packets (not valid packets), and with https seems to work.

What can I do to solve this problems (absolute path and ssl problem)

Thanks
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux