>> I am having trouble getting my reverse proxy to work with SSL. > > Do you want the reverse proxy to be https-enabled, or do you > want to reverse-proxy to a https-host? > > To RP to a https-backend system you need 'SSLProxyEngine on'. Ahhhhh! That's the little detail I was missing. :-) Thanks for the help!! What seems strange to me is that the proxy host requires a certificate just to tunnel a session to an https backend system... This seems like quite a lot of overhead for nothing... And contrary to what the docs tend to have one believe, AllowCONNECT is not necessary. In fact, I can even disable mod_connect and this has absolutely no effect. For others who google this thread in the future, here's what seems to be the "minimal reicipie" for getting this working: ****** LoadModule ssl_module modules/mod_ssl.so Listen 443 <VirtualHost _default_:443> SSLEngine on SSLCertificateFile /path/to/cert SSLCertificateKeyFile /path/to/key SSLProxyEngine on ProxyPass /bla/ https://backendhost/bla/ ProxyPassReverse /bla/ https://backendhost/bla/ </VirtualHost> ****** --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|