On Sun, Mar 29, 2009 at 6:06 PM, YungWei.Chen <YungWei.Chen@xxxxxxxxxxxxx> wrote: > Hi, > I am trying to set up a reverse proxy server, which accepts only ssl > requests. > If the proxy server forwards requests to an ssl page, it will work. > But if the proxy server forwards requests to a non-ssl page, I will get > 503 Service Temporarily Unavailable error. > Does it have to be ssl-to-ssl and http-to-http? If so, why? Thanks. > > <VirtualHost *:443> > .... > .... > > SSLProxyEngine On > <Location / > > Order Deny,Allow > Deny from all > Allow from 192.168.12 > ProxyPass http://192.168.12.31:8888/ > ProxyPassReverse http://192.168.12.31:8888/ > ProxyPassReverseCookieDomain 192.168.12.31:8888 192.168.12.21 > </Location> > </VirtualHost> If your intention is to accepts SSL requests and proxy them to an non-ssl server your above config is correct (apart from hte SSLProxyEngine statementwhich you don't need.). So with the above config it should work. SSLProxyEngine you need when you want to proxy SSL to SSL or non-SSL to SSL. But to make that work you will need to do more. Just adding SSLProxyEngine On is not enough. Krist -- krist.vanbesien@xxxxxxxxx krist@xxxxxxxxxxxxx Bremgarten b. Bern, Switzerland -- A: It reverses the normal flow of conversation. Q: What's wrong with top-posting? A: Top-posting. Q: What's the biggest scourge on plain text email discussions? --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|