Re: SSL proxy issues
am 27.05.2008 11:19:33 von lwhelanThis is a multi-part message in MIME format.
------_=_NextPart_001_01C8BFDA.C6A527A7
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Hi, first time mailer but hoping for some good advice from experienced
users.
=20
Basically Im looking to implement a solution that will redirect SSL
requests coming into my apache server (listening on 443) and forward
them on to a backend server.
I have reverse proxying setup but I cant seem to get it to work for
https connections.
=20
At the moment using the current configuration, below, an http connection
coming into the server on port 80 can be redirected to the https site
configured.
=20
But when I click on a login button on that site Im just getting a blank
screen on Firefox, with no errors showing in the logs?
=20
Has anyone any ideas, cause Ive been looking into this for hours now?
=20
Listen 8080
Listen 443
ServerName F00311.eircom.ie
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
SSLProxyEngine on
ProxyPass / https://www.365online.com/
ProxyPassReverse / https://www.365online.com/
=20
SSLSessionCache "shmcb:d:/Apache2.2/logs/ssl_scache(512000)"
SSLSessionCacheTimeout 300
SSLEngine On
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
SSLCertificateKeyFile "D:\Apache2.2\conf\security\ca.key"
SSLCertificateFile "D:\Apache2.2\conf\security\ca.crt"
ServerName F00311.eircom.ie
SSLProxyEngine on
ProxyPass / https://www.365online.com/
ProxyPassReverse / https://www.365online.com/
SSLProxyVerify none
SSLProxyProtocol all
SSLProxyCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
=20
************************************************************ ***
The information contained in this e-mail and any files transmitted=20
with it is confidential and may be subject to legal professional=20
privilege. It is intended solely for the use of the addressee(s).=20
If you are not the intended recipient of this e-mail, please note=20
that any review, dissemination, disclosure, alteration, printing,=20
copying or transmission of this e-mail and/or any file transmitted=20
with it, is prohibited and may be unlawful.=20
If you have received this e-mail by mistake, please promptly=20
inform the sender by reply e-mail and delete the material.=20
Whilst this e-mail message has been swept for the presence of=20
computer viruses, eircom does not, except as required by law,=20
represent, warrant and/or guarantee that the integrity=20
of this communication has been maintained nor that=20
the communication is free of errors, viruses, interception or=20
interference.=20
eircom Limited. Private Company Limited by Shares.=20
Registered in Dublin. Registration Number 98789.
Registered Office - 114 St. Stephen's Green West, Dublin 2.
************************************************************ ***
------_=_NextPart_001_01C8BFDA.C6A527A7
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
time=20
mailer but hoping for some good advice from experienced=20
users.
Im looking=20
to implement a solution that will redirect SSL requests coming into my apac=
he=20
server (listening on 443) and forward them on to a backend=20
server.
verse=20
proxying setup but I cant seem to get it to work for https=20
connections.
ment using=20
the current configuration, below, an http connection coming into the server=
on=20
port 80 can be redirected to the https site configured.
I click on=20
a login button on that site Im just getting a blank screen on Firefox, with=
no=20
errors showing in the logs?
e any=20
ideas, cause Ive been looking into this for hours now?
Listen 8080
Listen 443
ServerName F00311.eircom.ie
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>
SSLProxyEngine on
ProxyPass / https://www.365online.com/
ProxyPassReverse /=20
https://www.365online.com/
SSLSessionCache=20
"shmcb:d:/Apache2.2/logs/ssl_scache(512000)"
SSLSessionCacheTimeout 300
<VirtualHost F00311.eircom.ie:443><=
/P>
SSLEngine On
SSLCipherSuite=20
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
>
SSLCertificateKeyFile=20
"D:\Apache2.2\conf\security\ca.key"
SSLCertificateFile=20
"D:\Apache2.2\conf\security\ca.crt"
ServerName F00311.eircom.ie
SSLProxyEngine on
ProxyPass / https://www.365online.com/
ProxyPassReverse /=20
https://www.365online.com/
SSLProxyVerify none
SSLProxyProtocol all
SSLProxyCipherSuite=20
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
>
***************************************************************
The information contained in this e-mail and any files transmitted=20
with it is confidential and may be subject to legal professional=20
privilege. It is intended solely for the use of the addressee(s).=20
If you are not the intended recipient of this e-mail, please note=20
that any review, dissemination, disclosure, alteration, printing,=20
copying or transmission of this e-mail and/or any file transmitted=20
with it, is prohibited and may be unlawful.=20
If you have received this e-mail by mistake, please promptly=20
inform the sender by reply e-mail and delete the material.=20
Whilst this e-mail message has been swept for the presence of=20
computer viruses, eircom does not, except as required by law,=20
represent, warrant and/or guarantee that the integrity=20
of this communication has been maintained nor that=20
the communication is free of errors, viruses, interception or=20
interference.=20
eircom Limited. Private Company Limited by Shares.=20
Registered in Dublin. Registration Number 98789.
Registered Office - 114 St. Stephen's Green West, Dublin 2.
***************************************************************
------_=_NextPart_001_01C8BFDA.C6A527A7--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org