Chris Franks wrote:
Hi, Our webservers sit behind proxy servers. One one of the web servers, I'm trying to use "mod_proxy" to proxy content from outside of our network. Can mod_proxy be made aware of the actual proxy servers we have? I'm trying to proxy secure content over https and have the following in my ssl.conf: SSLProxyEngine on ProxyRequests off <Proxy *> Order deny,allow Allow from all </Proxy>ProxyVia on ProxyRemote * https://www.remotesite.com ProxyPass /test https://www.remotesite.com/test ProxyPassReverse /test https://www.remotesite.com/testI'm runing apache 2.2.3 on centos 5 and have the following environment variables set: ftp_proxy=http://wwwcache.ncl.ac.uk:8080 http_proxy=http://wwwcache.ncl.ac.uk:8080 https_proxy=http://wwwcache.ncl.ac.uk:8080 But whenever I try to access the proxied content, my ssl_error_log contains: [Wed May 21 15:10:37 2008] [error] (70007)The timeout specified has expired: proxy: HTTPS: attempt to connect to 100.100.100.100:443 (www.remotesite.com) failed [Wed May 21 15:10:37 2008] [error]ap_proxy_connect_backend disabling worker for (www.remotesite.com) Does anyone know if mod_proxy can used behind web proxies (in our caseSQUID)
Probably this is firewall issue between the machine that is running apache, and www.remotesite.com.
From a shell on the apache machine, are you able to successfully do "telnet 100.100.100.100 443" and open a socket to that port on that machine?
If you can't connect to that host and port from that machine, neither can apache.
cheers, Eric --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|