Topic: Virtual Domains, ProxyPass and SSL

[si_blakely]

I have managed to set up ProxyPass with a virtual domain sslvpn.mydomain.net to redirect port 443 traffic to my SSL-Explorer installation (port 28081), to avoid a restriction on my corporate VPN. I used the db domain commands, and expand-template. However, because the default setup creates both http and https proxies, eventually the connection drops back to http - not what I want. Can I modify the virtual domain setup to force it to https only?

Simon

[janet]

si_blakely

See
http://wiki.contribs.org/Https_redirection

[CharlieBrady]

However, because the default setup creates both http and https proxies, eventually the connection drops back to http - ...

Why would the connection eventually "drop back to http"? That suggests a content problem in the website - it must contain non https URLs - or perhaps, specifically http URLs.

[si_blakely]

Yeah, I've been a bit confused about that myself. I manually frigged the httpd.conf (I know I will wipe out the changes with an expand-template), and found that some operations failed due to attempting a http lookup instead of https. Changing the URL would work correctly. This means that it is either SSL-Explorer not properly specifying URLS, or mod_proxy not correctly translating the urls, or some interaction of the two. Connecting directly to the SSL-Explorer port as https works correctly.

I have actually uninstalled SSL-Explorer and tried the open source fork (Adito/OpenVPN-ALS), but that isn't working for me at all. <sigh>
Maybe I'll just have to live without it, but it is a pretty cool system. It is just blocked by many firewalls that object to https on port 28081.

Si

[janet]

si_blakely

Could be that ownership and permissions on the web apps files are incorrect. I've seen a similar outcome with other web apps that were installed with wrong permissions & ownership.