You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by David Richardson <is...@derdev.com> on 2002/01/17 17:22:30 UTC
mod_proxy _rewrite to SSL a backend server
I have Apache 1.3.22 on RH7.1 Linux as a Frontend server running SSL secured through :443. It is enabled with mod_proxy and mod_rewrite. It is Internet accessible at https://www.example.com/
A Backend server is also running Apache (non-SSL!) with a legacy "application" site that is cgi driven. It is intranet accessible at http://backend.example.com/
I would like to have requests to Frontends's URL https://www.example.com/application/ be a transparent passthrough / rewrite for requests to http://backend.example.com/ without having to recode anything on Backend.
The result should be Internet output from:
https://www.example.com/application/cgi-bin/foo.cgi?i=1 or
https://www.example.com/application/html/calendar.html or
or whatever else the Backend spews forth.
Can this be done with mod's _proxy and _rewrite? What I though should work was:
--- snip httpd.conf----
<Directory />
RewriteEngine On
RewriteRule ^application/(.*)$ http://10.0.0.50/$1 [P]</Directory>
This brings some of the images and html forward, but the links from the Backend to /cgi-bin/foo.cgi are still tied to www.example.com/cgi-bin/foo.cgi, so I conclude that I've missed something to make them /application/cgi-bin/foo.cgi
Thanks!
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: mod_proxy _rewrite to SSL a backend server
Posted by "Robert L. Harris" <Ro...@rdlg.net>.
I'm doing the same thing pretty much. You need the following 2 lines in
your httpd.conf.
ProxyPass /application http://backend.example.com/
ProxyPassReverse /application http://backened.example.com/
Thus spake David Richardson (isp@derdev.com):
> I have Apache 1.3.22 on RH7.1 Linux as a Frontend server running SSL secured through :443. It is enabled with mod_proxy and mod_rewrite. It is Internet accessible at https://www.example.com/
>
> A Backend server is also running Apache (non-SSL!) with a legacy "application" site that is cgi driven. It is intranet accessible at http://backend.example.com/
>
> I would like to have requests to Frontends's URL https://www.example.com/application/ be a transparent passthrough / rewrite for requests to http://backend.example.com/ without having to recode anything on Backend.
>
> The result should be Internet output from:
> https://www.example.com/application/cgi-bin/foo.cgi?i=1 or
> https://www.example.com/application/html/calendar.html or
> or whatever else the Backend spews forth.
>
> Can this be done with mod's _proxy and _rewrite? What I though should work was:
>
> --- snip httpd.conf----
> <Directory />
> RewriteEngine On
> RewriteRule ^application/(.*)$ http://10.0.0.50/$1 [P]</Directory>
>
> This brings some of the images and html forward, but the links from the Backend to /cgi-bin/foo.cgi are still tied to www.example.com/cgi-bin/foo.cgi, so I conclude that I've missed something to make them /application/cgi-bin/foo.cgi
>
> Thanks!
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
:wq!
---------------------------------------------------------------------------
Robert L. Harris | Micros~1 :
Senior System Engineer | For when quality, reliability
at RnD Consulting | and security just aren't
\_ that important!
DISCLAIMER:
These are MY OPINIONS ALONE. I speak for no-one else.
FYI:
perl -e 'print $i=pack(c5,(41*2),sqrt(7056),(unpack(c,H)-2),oct(115),10);'
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org