proxying SSL -> SSL

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: proxying SSL -> SSL
From: lejeczek <peljasz@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 4 Oct 2023 10:40:03 +0200
Reply-to: users@xxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1

Hi guys.

I've sroogled & have found people suggesting working examples, I thought I had some notes but now I'm thinking I read that it should not work..
so I'm not sure what to think of this seemingly setup:

<VirtualHost siem.mine.priv:443>
ServerAdmin webdev@xxxxxxxxx
ServerName siem.mine.priv

ErrorLog /var/log/httpd/siem.mine.priv-error_log
CustomLog /var/log/httpd/siem.mine.priv-access_log common

SSLProxyEngine on
#SSLEngine on
#SSLProxyVerify none
#SSLProxyCheckPeerCN off
SSLCertificateFile      /etc/pki/tls/certs/siem.mine.priv.crt
SSLCertificateKeyFile   /etc/pki/tls/private/siem.mine.priv.key
#SSLProxyCACertificateFile /etc/wazuh-indexer/certs/root-ca.pem
#SSLProxyMachineCertificateFile /etc/wazuh-indexer/certs/admin.pem

RequestHeader set X-Forwarded-Proto “https”
RequestHeader set X-Forwarded-Port “443”

ProxyRequests Off
#ProxyPreserveHost on
#ProxyPass         / https://127.0.0.1:8443/
#ProxyPassReverse / https://127.0.0.1:8443/

<Location "/">
    # preserve Host header to avoid cross-origin problems
    ProxyPreserveHost on
    # proxy to
    ProxyPass         https://127.0.0.1:8443/
    ProxyPassReverse https://127.0.0.1:8443/
</Location>

</VirtualHost>

As you can see I've fiddle whit all those options in different combinations but nothing works for me.
Would you know how to fix or... perhaps you have Apache rev-proxying to Wazuh?

errors in log:
....
[Wed Oct 04 10:34:54.179364 2023] [proxy:error] [pid 1069029:tid 1069198] (20014)Internal error (specific information not available): [client 10.3.9.144:46858] AH01084: pass request body failed to 127.0.0.1:8443 (127.0.0.1)
[Wed Oct 04 10:34:54.179394 2023] [proxy:error] [pid 1069029:tid 1069198] [client 10.3.9.144:46858] AH00898: Error during SSL Handshake with remote server returned by /
[Wed Oct 04 10:34:54.179397 2023] [proxy_http:error] [pid 1069029:tid 1069198] [client 10.3.9.144:46858] AH01097: pass request body failed to 127.0.0.1:8443 (127.0.0.1) from 10.3.9.144 ()

many thanks, L.

Follow-Ups:
- Re: proxying SSL -> SSL
  - From: lejeczek
- RE: proxying SSL -> SSL
  - From: Marc

Prev by Date: Re: Is it true that Nginx is faster, more secure and better than Apache?
Next by Date: RE: proxying SSL -> SSL
Previous by thread: Re: Is it true that Nginx is faster, more secure and better than Apache?
Next by thread: RE: proxying SSL -> SSL
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]