Re: Redirect to HTTPS using Load Balancer/SSL Offload

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On Nov 23, 2007, at 10:06 PM, Matt Bullock wrote:


I was hoping there would be a way to let apache know the url being
requested was "https://...";. Here is a log when I navigate to a https 
page:



There is.  Here's what you do:
Set up two virtual hosts. One to catch unencrypted port 80 traffic, the other one to catch offloaded traffic from the LB on a different port (could be 81, but not 80). 

The port 80 virtualhost gets the Redirect rule.

The port 81 virtualhost does NOT get the Redirect rule.
This way you separate traffic between unencrypted and SSL (decrypted by the Barracuda).
If your "ssl" virtual host needs to construct redirects to itself, you might tell it: 

ServerName https://your.host.name:443
which makes every module or back-end that obtains the request "scheme" by running the ap_hook_scheme handler chain do the right thing. This works as of httpd 2.2.3. 

S.

--
Sander Temme
sctemme@xxxxxxxxxx
PGP FP: 51B4 8727 466A 0BC3 69F4  B7B8 B2BE BC40 1529 24AF

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux