[users@httpd] Reverse proxy

Sat, 02 Jun 2012 04:04:24 -0700 

Hello,

I'm trying to configure a reverse proxy (ssl) with apache 2.2 in Debian
Squeeze, but I have some problems, specially with some path absolute and
with https

I'll try to detail what I have made and what I'm trying to configure
I have a server Debian Squeeze with apache2.2 + mod_proxy_html with:
    # apt-get  install libapache2-mod-proxy-html libxml2-dev
    # a2enmod proxy
    # a2enmod proxy_http
    # a2enmod proxy_html
    # a2enmod headers

After that I have configured a virtual host with:
reverse_proxy_ssl.conf
------------------------------
-------------------------------
#NameVirtualHost *:443
SSLPassPhraseDialog exec:/etc/apache2/ssl/passphrase

<VirtualHost *:443>
        ServerName domain.com
        ServerAdmin ad...@doamin.com

        SSLEngine on

        SSLProxyEngine on

        SSLCertificateFile /etc/apache2/ssl/www.domain.com.pem.crt
        SSLCertificateKeyFile /etc/apache2/ssl/www.domain.com.pem.key

   ProxyPreserveHost On

    <Proxy /intranet/>
        ProxyHTMLLogVerbose On
        ProxyHTMLURLMap     https://192.168.10.10/intranet/ /intranet/
        ProxyHTMLURLMap     / /intranet/
        #
        ProxyPass         https://192.168.10.10/intranet/
        ProxyPassReverse  https://192.168.10.10/intranet/
    </Proxy>

   <Proxy /application/>
        ProxyHTMLLogVerbose On
        ProxyHTMLURLMap     https://192.168.168.10.25/application//application/
        ProxyHTMLURLMap     / /application/
        #
        ProxyPass         https://192.168.10.25/application/
        ProxyPassReverse  https://192.168.10.25/application/
    </Proxy>


       ErrorLog /var/log/apache2/error.log

        # Possible values include: debug, info, notice, warn, error, crit,
        # alert, emerg.
        LogLevel warn

#       CustomLog /var/log/apache2/access.log combined
        SetEnvIf Request_URI "^/check\.txt$" dontlog
        CustomLog /var/log/apache2/access.log combined env=!dontlog
        ServerSignature On



</VirtualHost>


-------------------------------------------------------------


I'm trying to configure to allow access of our intranet from internet with
a reverse proxy (apache that is located in DMZ). With this configuration
domain.com/intranet works correctly and we can access to intranet, but we
have one problem when from domain.com/intranet we need to use another
internal application that is called from intranet with absolute path (
https://192.168.10.25/application/) and from internet appears that try to
access with internal ip, and this link es incorrect from external site

We only need to access from intranet to multiple internal application that
are in external server and we like to restrict to minimal access from
internet. All the application that are in the smae server of intranet are
working.

The second problem is with https and reverse proxy in our firewall appears
some errors with packets (not valid packets), and with https seems to work.

What can I do to solve this problems (absolute path and ssl problem)

Thanks

Reply via email to