[MAD-SAGE] Apache SSL Reverse Proxy?

Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

Date:	Tue, 19 Oct 2004 19:15:05 -0500
From:	ballard@xxxxxxxxxxxxx (Jeff Ballard)
Subject:	[MAD-SAGE] Apache SSL Reverse Proxy?

Of course, you'll want to turn proxyrequests on.  Here's from my config for 
apache2's memcache module (since I have it handy):

#CacheEnable mem /
#MCacheSize 409600
#MCacheMaxObjectCount 10000
#MCacheMinObjectSize 1
#MCacheMaxObjectSize 204800
#CacheDefaultExpire 3600
#CacheIgnoreNoLastMod On
#CacheIgnoreCacheControl On
#CacheMaxExpire 604800

Now, note that its commented out.  I've had problems with Apache2 doing odd 
things with memory caches and proxies.  Sometimes it would think that it had 
it cached so it wouldn't proxy, but then really it didn't have it cached and 
it wouldn't go fetch it from the proxy.  I just solved the problem by 
commenting out the cache.

Then turn on:

LogLevel debug

and you should see your cache and proxy stuff in your error log file.

-Jeff


On Tue, 19 Oct 2004 11:48:50 -0500  scott.pichelman@xxxxxxxxxxxxxx wrote:

> This is a multipart message in MIME format.
> --=_alternative 005C5CDA86256F32_=
> Content-Type: text/plain; charset="US-ASCII"
> Content-Transfer-Encoding: quoted-printable
> 
> Hi all,
> 
> Has anyone had any experience with configuring an SSL-based Apache(latest 
> 1.3.X - 1.3.31) Reverse Proxy=3F
> There is even more complexity to my project like adding RSA's(ACE) securid 
> 5.2 Web agent to the mix but...I need help with the current config first!
> I can't seem to get the  proxy to cache pages.
> Here is my config:
> 
> <IfModule mod=5Fproxy.c>
> ProxyRequests Off
> ProxyPass /warmsn1/ https://203.57.228.7/
> ProxyPassReverse /warmsn1/ https://203.57.228.7/
> 
> <Directory "/usr/local/apache/proxy">
> SSLRequireSSL
> Order allow,deny
> Allow from all
> </Directory>
> 
> Proxy via Off
> 
> CacheRoot "/usr/local/apache/proxy"
> CacheSize 5
> CacheGcInterval 4
> CacheMaxExpire 24
> CacheLastModifiedFactor 0.1
> CacheDefaultExpire 1
> </IfModule>
> 
> I am going to start from scratch and compile with the "proxy" option 
> only...I.E. no SSL. (Linux Redhat 7.3 with patches)
> Please let me know if anyone has any resources or good web references that 
> I could work off.
> 
> Thanks for any help!
> 
> Scott
> 
> 
> Scott Pichelman
> Systems Administrator
> Weir Slurry TM
> North America
> 2701 S Stoughton Rd
> Madison WI 53716  USA
> 
> T: +001 608 226 5615
> F: +001 608 221 5807
> M: +001 608 279 0368 
> E: scott.pichelman@xxxxxxxxxxxxxx
> W: http://weirslurry.com
> 
> 
> The information contained in this email (including any attachments) is confi=
> dential, subject to copyright and for the use of the intended recipient only=
> . If you are not the intended recipient please delete this message after not=
> ifying the sender. Unauthorised retention, alteration or distribution of thi=
> s email is forbidden and may be actionable.
> 
> Attachments are opened at your own risk and you are advised to scan incoming=
>  email for viruses before opening any attached files. We give no guarantee t=
> hat any communication is virus-free and accept no responsibility for virus c=
> ontamination or other system loss or damage of any kind.
> 
> --=_alternative 005C5CDA86256F32_=
> Content-Type: text/html; charset="US-ASCII"
> Content-Transfer-Encoding: quoted-printable
> 
> 
> <br><font size=3D2 face=3D"sans-serif">Hi all,</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">Has anyone had any experience with co=
> nfiguring
> an SSL-based Apache(latest 1.3.X - 1.3.31) Reverse Proxy=3F</font>
> <br><font size=3D2 face=3D"sans-serif">There is even more complexity to my
> project like adding RSA's(ACE) securid 5.2 Web agent to the mix but...I
> need help with the current config first!</font>
> <br><font size=3D2 face=3D"sans-serif">I can't seem to get the &nbsp;proxy
> to cache pages.</font>
> <br><font size=3D2 face=3D"sans-serif">Here is my config:</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">&lt;IfModule mod=5Fproxy.c&gt;</font>=
> 
> <br><font size=3D2 face=3D"sans-serif">ProxyRequests Off</font>
> <br><font size=3D2 face=3D"sans-serif">ProxyPass /warmsn1/ https://203.57.22=
> 8.7/</font>
> <br><font size=3D2 face=3D"sans-serif">ProxyPassReverse /warmsn1/ https://20=
> 3.57.228.7/</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">&lt;Directory &quot;/usr/local/apache=
> /proxy&quot;&gt;</font>
> <br><font size=3D2 face=3D"sans-serif">SSLRequireSSL</font>
> <br><font size=3D2 face=3D"sans-serif">Order allow,deny</font>
> <br><font size=3D2 face=3D"sans-serif">Allow from all</font>
> <br><font size=3D2 face=3D"sans-serif">&lt;/Directory&gt;</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">Proxy via Off</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">CacheRoot &quot;/usr/local/apache/pro=
> xy&quot;</font>
> <br><font size=3D2 face=3D"sans-serif">CacheSize 5</font>
> <br><font size=3D2 face=3D"sans-serif">CacheGcInterval 4</font>
> <br><font size=3D2 face=3D"sans-serif">CacheMaxExpire 24</font>
> <br><font size=3D2 face=3D"sans-serif">CacheLastModifiedFactor 0.1</font>
> <br><font size=3D2 face=3D"sans-serif">CacheDefaultExpire 1</font>
> <br><font size=3D2 face=3D"sans-serif">&lt;/IfModule&gt;</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">I am going to start from scratch and
> compile with the &quot;proxy&quot; option only...I.E. no SSL. (Linux Redhat
> 7.3 with patches)</font>
> <br><font size=3D2 face=3D"sans-serif">Please let me know if anyone has any
> resources or good web references that I could work off.</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">Thanks for any help!</font>
> <br>
> <br><font size=3D2 face=3D"sans-serif">Scott</font>
> <br>
> <br>
> <br><font size=3D2 face=3D"sans-serif">Scott Pichelman<br>
> Systems Administrator<br>
> Weir Slurry TM<br>
> North America<br>
> 2701 S Stoughton Rd<br>
> Madison WI 53716 &nbsp;USA<br>
> <br>
> T: +001 608 226 5615<br>
> F: +001 608 221 5807<br>
> M: +001 608 279 0368 <br>
> E: scott.pichelman@xxxxxxxxxxxxxx<br>
> W: http://weirslurry.com</font>
> <font face=3D"Helv" size=3D3 color=3D#000000 ></font><br><font face=3D"Helv"=
>  size=3D3 color=3D#000000 ></font><br><font face=3D"Helv" size=3D3 color=3D#=
> 000000 >The information contained in this email (including any attachments) =
> is confidential, subject to copyright and for the use of the intended recipi=
> ent only. If you are not the intended recipient please delete this message a=
> fter notifying the sender. Unauthorised retention, alteration or distributio=
> n of this email is forbidden and may be actionable.</font><br><font face=3D"=
> Helv" size=3D3 color=3D#000000 ></font><br><font face=3D"Helv" size=3D3 colo=
> r=3D#000000 >Attachments are opened at your own risk and you are advised to =
> scan incoming email for viruses before opening any attached files. We give n=
> o guarantee that any communication is virus-free and accept no responsibilit=
> y for virus contamination or other system loss or damage of any kind.</font>=
> <br>
> --=_alternative 005C5CDA86256F32_=--
> _______________________________________________
> mad-sage mailing list
> mad-sage@xxxxxxxxxxxx
> http://www.mad-sage.org/mailman/listinfo/mad-sage
> 


-- 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Jeff Ballard <ballard@xxxxxxxxxxxxx>   608-265-5090
Unix Systems Manager, Computer-Aided Engineering Center

[← Prev in Thread]	Current Thread	[Next in Thread→]
[MAD-SAGE] Apache SSL Reverse Proxy?, scott.pichelman@xxxxxxxxxxxxxx [MAD-SAGE] Apache SSL Reverse Proxy?, Jeff Ballard <=

Previous by Date:	[MAD-SAGE] Apache SSL Reverse Proxy?, scott.pichelman@xxxxxxxxxxxxxx
Next by Date:	[MAD-SAGE] Thurs 10/21: what we did on our summer vacation, David Parter
Previous by Thread:	[MAD-SAGE] Apache SSL Reverse Proxy?, scott.pichelman@xxxxxxxxxxxxxx
Next by Thread:	[MAD-SAGE] Job Opportunities, Christopher Meister
Indexes:	[Date] [Thread]

Mailing List Archives

Authenticated access

[MAD-SAGE] Apache SSL Reverse Proxy?