Topic: ssl proxypass to another port

[Crome]

Hi,

I've been reading the other Proxypass-threads but could not really figure out a solution to my problem. That's why I start a new thread. Sorry if I sound redundant.

In 6.0.1, I was using the proxypass contrib to achieve the following:

All requests to https://domainname/postbus/ should be relayed to https://internalip:1080/.

I noticed the following being added at the beginning of the httpd.conf (right after Listening 0.0.0.0:80) when using the contrib.

Code: [Select]


ProxyPass //postbus/ https://x.x.x.x:1080/
ProxyPassReverse //postbus/ https://x.x.x.x:1080/
<Location //postbus/>
SSLRequireSSL
order deny, allow
deny from all
allow from all
</Location>


In SME 7.1 I tried the proxypass that is currently in BETA but it always gives me an error upon an httpd-restart and when I surf to the URL I get a http 500 Internal Server Errror.

I tried to add the code above to the httpd.conf then but to no avail.

Now, I was wondering if anyone could point me in a direction on how to make this work in 7.1?

Thank you!

[Crome]

Ok, let me rephrase then...

How can I make sure in SME 7.1 that I can reach my internal mailserver's webmail from the internet which is running on https://internalip:1080/?

Anybody?

[Crome]

Omg,

Isn't there really nobody who can point me in the right direction? What am I doing wrong? Do I need to rephrase again or am I posting into the wrong forum? Please, something... I cannot move away from SME 6.0.1 if I can't fix this...

[raem]

Crome

I saw an error in this rpm which I reported to the author in Nov 2006
smeserver-proxypass-0.0.3-1.noarch.rpm

The database location should be specified as
/home/e-smith/db/domains

The contribs custom template fragment reads
{
tie my %domains, 'esmith::config', '/home/e-smith/domains';

You need to change the template code.
It seems to work OK then


Alternatively for proxypass command line configuration see

http://forums.contribs.org/index.php?topic=33405.0
http://forums.contribs.org/index.php?topic=35425.0

[william_syd]

Now, I was wondering if anyone could point me in a direction on how to make this work in 7.1?

Thank you!

Do you see something like this in you httpd error logs ?

Code: [Select]

[Sun Feb 25 00:01:05 2007] [error] SSL Proxy requested for magicwilly.info:443 but not enabled [Hint: SSLProxyEngine]
[Sun Feb 25 00:01:05 2007] [error] proxy: failed to enable ssl support for 192.168.2.9:443 (192.168.2.9)


Info.

Code: [Select]

SSLProxyEngine directive

The SSLProxyEngine toggles whether the server will use SSL for proxied connections. SSLProxyEngine on is required if your server is acting as a reverse proxy for an SSL resource.

[Crome]

Many thank to Ray and William!

I got it working. I indeed saw the SSLProxyEngine error in the httpd error log. It all worked when I added the line 'SSLProxyEngine on' to the httpd.conf.

Now, can someone tell me how I should enter this into a template?