Microsoft
Software
Hardware
Network
Question : Apache Reverse proxy https to http
Hi,
First off thanks in advance to any replies i recieve to this post.
I am looking at creating a reverse proxy from apache to IIS. I have read everything on every site untill i am blue int he face and still cant get it to work through proxypass or proxy rewrite either. perhaps something is wrong. here is what i am looking to do. have a user type in
https://mysite.com
and it redirects to an internal server
http://myinternalsite.loca
l
all while showing the original address in the address bar and having apache pass the certificate. here is the two bits of code i have thus far. remember this is my httpd-vhosts.conf file and have done it via both methods and neither work
thanks
#
WWW.mysite.com
HTTP Redirect
ServerName
www.mysite.com
SSLProxyEngine On
ProxyVia On
SSLEngine On
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:+HIGH:+ME
DIUM:+LOW:
+SSLv2:+EX
P
SSLCertificateFile /usr/local/etc/apache22/ex
tra/SSL/
ww
w.mysite.c
rt
SSLCertificateKeyFile /usr/local/etc/apache22/ex
tra/SSL/my
server.key
# SSLCertificateChainFile /usr/local/etc/apache22/ex
tra/SSL/gd
_bundle.cr
t
ProxyPreserveHost On
ProxyPass
https://mysite.com/
ProxyPassReverse
http://internalserver.loca
l:80/
AND THE OTHER WAY I CAN NOT GET TO WORK TOO IS :--->
ProxyRequests Off
ServerName
www.mysite.com
ProxyPreserveHost On
RewriteEngine on
# Redirect http traffic to https
RewriteRule ^/(.*)$
https://www.mysite.com/
$1 [L,R]
ServerName
www.mysite.com:443
SSLEngine on
SSLProxyEngine On
RequestHeader set Front-End-Https "On"
ProxyPreserveHost On
RewriteEngine on
CacheDisable *
# Rewrite the WWW-Authenticate header to strip out Windows Integrated
# Authentication (NTLM) and only use Basic-Auth
SetEnvIf User-Agent ".*MSIE.*" value BrowserMSIE
Header unset WWW-Authenticate
Header add WWW-Authenticate "Basic realm=
www.mysite.com
"
# Redirect / to /
RewriteRule ^/$
https://www.mysite.com/
[R]
# Reverse proxy all requests to the internal server
RewriteRule ^/(.*)
http://internalserver.loca
l/$1
[P]
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:+HIGH:+ME
DIUM:+LOW:
+SSLv2:+EX
P:+eNULL
#SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:RC4-MD5:+
HIGH:+MEDI
UM:+SSLv3:
+SSLv2
SSLCertificateFile /usr/local/etc/apache22/ex
tra/SSL/
ww
w.mysite.c
om.crt
SSLCertificateKeyFile /usr/local/etc/apache22/ex
tra/SSL/my
server.key
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Answer : Apache Reverse proxy https to http
http://www.lengoldenstein.
com/2008/1
0/16/apach
e-as-a-rev
erse-
proxy
-to-exchan
ge-2007-ou
tlook-web-
access/
and it worked like a charm.
Random Solutions
Is Notes.jar and NCSO.jar backward compatible.
Watchguard X5 Router & Bellsouth DSL-on, off, on, off.....
Lost Internet connection from LAN, network with IPCop firewall and SBS2003
Transmitting Broadcast Quality Video
mail sending issue on hotmail account
"windows cannot connect to domain, domain controller ..."
Getting a 169 address
Lotus Address Book
w32 time & nntp errors
Setup PTR record for mailserver
