Microsoft
Software
Hardware
Network
Question : Apache Reverse proxy https to http
Hi,
First off thanks in advance to any replies i recieve to this post.
I am looking at creating a reverse proxy from apache to IIS. I have read everything on every site untill i am blue int he face and still cant get it to work through proxypass or proxy rewrite either. perhaps something is wrong. here is what i am looking to do. have a user type in
https://mysite.com
and it redirects to an internal server
http://myinternalsite.loca
l
all while showing the original address in the address bar and having apache pass the certificate. here is the two bits of code i have thus far. remember this is my httpd-vhosts.conf file and have done it via both methods and neither work
thanks
#
WWW.mysite.com
HTTP Redirect
ServerName
www.mysite.com
SSLProxyEngine On
ProxyVia On
SSLEngine On
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:+HIGH:+ME
DIUM:+LOW:
+SSLv2:+EX
P
SSLCertificateFile /usr/local/etc/apache22/ex
tra/SSL/
ww
w.mysite.c
rt
SSLCertificateKeyFile /usr/local/etc/apache22/ex
tra/SSL/my
server.key
# SSLCertificateChainFile /usr/local/etc/apache22/ex
tra/SSL/gd
_bundle.cr
t
ProxyPreserveHost On
ProxyPass
https://mysite.com/
ProxyPassReverse
http://internalserver.loca
l:80/
AND THE OTHER WAY I CAN NOT GET TO WORK TOO IS :--->
ProxyRequests Off
ServerName
www.mysite.com
ProxyPreserveHost On
RewriteEngine on
# Redirect http traffic to https
RewriteRule ^/(.*)$
https://www.mysite.com/
$1 [L,R]
ServerName
www.mysite.com:443
SSLEngine on
SSLProxyEngine On
RequestHeader set Front-End-Https "On"
ProxyPreserveHost On
RewriteEngine on
CacheDisable *
# Rewrite the WWW-Authenticate header to strip out Windows Integrated
# Authentication (NTLM) and only use Basic-Auth
SetEnvIf User-Agent ".*MSIE.*" value BrowserMSIE
Header unset WWW-Authenticate
Header add WWW-Authenticate "Basic realm=
www.mysite.com
"
# Redirect / to /
RewriteRule ^/$
https://www.mysite.com/
[R]
# Reverse proxy all requests to the internal server
RewriteRule ^/(.*)
http://internalserver.loca
l/$1
[P]
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:+HIGH:+ME
DIUM:+LOW:
+SSLv2:+EX
P:+eNULL
#SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA
:RC4-MD5:+
HIGH:+MEDI
UM:+SSLv3:
+SSLv2
SSLCertificateFile /usr/local/etc/apache22/ex
tra/SSL/
ww
w.mysite.c
om.crt
SSLCertificateKeyFile /usr/local/etc/apache22/ex
tra/SSL/my
server.key
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Answer : Apache Reverse proxy https to http
http://www.lengoldenstein.
com/2008/1
0/16/apach
e-as-a-rev
erse-
proxy
-to-exchan
ge-2007-ou
tlook-web-
access/
and it worked like a charm.
Random Solutions
force .htaccess on folder in site
Setup two Wireless SSID
Map Domain Name to IP
ssid broadcast disabled, is it still possible to be detected ?
Wireless Connection Issue
Just want to connect my laptop to my PC
how to use Unzip.nlm in NW 5.1 sp5
Enable SPAN (port mirroring) on all ports on Cisco Catalyst 3500 switch
You must run setup to install new binary files for every server in your farm
Is there any free way or ways to use mx records email to another email account?