SSL with a reverse proxy

Dev Shed Forums Sponsor:

June 23rd, 2009, 05:37 PM

ajs418

Registered User

Join Date: Jun 2009

Posts: 1

Time spent in forums: 9 m 57 sec
Reputation Power: 0

general - SSL with a reverse proxy

Hi everyone,

I apologize, but I'm fairly new to building reverse proxies.

I've been reading alot about how name based vhosts do not support SSL, and I understand the reasoning behind it (I think). Basically Apache needs to see the hostname so that it knows which vhost will serve the request. After that it can go through all its directives for that vhost. The problem is that it can't read the header "HOST:" value because it is encrypted.

So my situation is that I have a 3 Apache RPs, with about 5 vhosts (1 for every application). If each one requires HTTPS connections over port 443... what can I do besides make users click through a non matching cert warning?

I'm trying to figure out IP based vhosting, but how would that even possible with a reverse proxy? I'm under the assumption that all DNS entries will just need to be directed the RP. So if app1.domain.com resolves to the RP's IP address, how will the RP understand where it was really going? The IP is technically to itself.

I've found all sorts of information on this, but some of it is outdated, covers a whole breadth of scenarios that aren't applicable to me, and has basically got me stumped.

Any help is greatly appreciated! Thanks!

Viewing: Dev Shed Forums > System Administration > Apache Development > general - SSL with a reverse proxy

« Previous Thread | Next Thread »

Thread Tools	Search this Thread
Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are On [IMG] code is On HTML code is Off

View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox

Forum Jump

Free IT White Papers!

How to Present Effectively Online
This white paper offers practical and actionable advice on the key steps that any presenter should consider as they plan and execute a Webinar or online meeting.

Open Source Security Myths
Open Source Software (OSS) is computer software whose source code is available to the general public with relaxed or non-existent intellectual property restrictions (or arrangement such as the public domain), and is usually developed with the input of many contributors.

Power and Cooling Capacity Management for Data Centers
This paper describes the principles for achieving power and cooling capacity management.

Scalable, Fault-Tolerant NAS for Oracle - The Next Generation
For several years NAS has been evolving as a storage alternative for Oracle databases, and for good reason: NAS is quite often the simplest, most cost-effective storage approach for Oracle. Learn about the benefits that HP's approach to scalable NAS brings to Oracle environments in this comprehensive white paper.

Understanding Web Application Security Challenges
This white paper discusses many common threats and preventive measures for Web application security, and explains what you can do to help protect your organization.

More Free IT White Papers!