You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Brendan Connell <bm...@UU.NET> on 2002/12/12 23:53:06 UTC

[users@httpd] proxy/radius problem with apache v1.3.26 (fwd)

Just wanted to resend this once since I didn't get a reply the
first time around.  Wondering if anyone has dealt with a problem
like this before?  Thanks again in advance for your time.

--
Brendan


----- Forwarded message from Brendan Connell <bm...@UU.NET> -----

Date: Tue, 26 Nov 2002 07:57:01 +0000
From: Brendan Connell <bm...@UU.NET>
To: users@httpd.apache.org
Subject: [users@httpd] proxy/radius problem with apache v1.3.26

Greetings,

I'm having problems setting up some proxies (via RewriteRule with [P] flag)
from our main internal web server to various other web servers at our site.

The proxy setup is basic.  I have several RewriteRules inside a VirtualHost
container that use the [P] flag.  I've included an example RewriteRule below.

RewriteRule ^/left/(.*) https://left.myhost.net/$1 [P]

I'm using mod_auth_radius as the primary authentication/authorization method
for this host.  Inside the VirtualHost container I have a <Directory /> and
a <Directory proxy:*>, both containing basic authentication directives
associated with standard mod_auth_radius config.

<Directory proxy:*>
   AuthType Basic
   AuthName 'Intranet User'
   AuthAuthoritative off
   AuthRadiusAuthoritative on
   require valid-user
</Directory>

The hosts that are being proxied (ex: left.myhost.net) are all ACLed down 
with deny/allow statements, only allowing traffic to and from the main web 
server.


The problem I'm seeing is if you try to access one of the proxies directly,
for example:

https://www.mymainsite.net/left/

...the web server will return 404 "not found" errors.  My browser will
ask me to authenticate, but the web server will never send anything to the
radius server and just returns the 404 error.  However, if I go to the main
site first, authenticate, then proceed to the proxy it works fine.

I've exhausted almost all my resources looking for a fix for this problem.
I've searched the net, newsgroups and found a few postings asking for
help with this exact problem--but no solutions were posted.

If anyone has any insight or has an idea how I can fix this problem it
would be *greatly* appreciated.  Thanks in advance for your time.

--
Brendan

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

----- End forwarded message -----

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org