Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see:
viewtopic.php?t=158230
Linux Kernel, Network, and Services configuration.
hack3rcon
Posts: 746 Joined: 2015-02-16 09:54
Has thanked: 48 times
#1
Post
by hack3rcon » 2021-03-07 13:15
Hello,
I launched a reverse proxy server by Apache with below configuration:
Code: Select all
<VirtualHost *:80>
ProxyPreserveHost On
ProxyPass / http://Server-IP/
ProxyPassReverse / http://Server-IP/
</VirtualHost>
I have some questions:
1- The real work of a proxy server is just that lines?
2- The real configuration of the web server must be done on the another server? Consider below figure:
Code: Select all
The Internet --> Reverse Proxy Server --> Apache Web Server
The SSL configuration and other Apache hardening and configuration must be done on the Apache Web Server and not the Reverse Proxy Server?
Please share your experiences.
Thank you.
reinob
Posts: 1189 Joined: 2014-06-30 11:42
Has thanked: 97 times
Been thanked: 47 times
#2
Post
by reinob » 2021-03-08 12:54
hack3rcon wrote: Hello,
I launched a reverse proxy server by Apache with below configuration:
Code: Select all
<VirtualHost *:80>
ProxyPreserveHost On
ProxyPass / http://Server-IP/
ProxyPassReverse / http://Server-IP/
</VirtualHost>
I have some questions:
1- The real work of a proxy server is just that lines?
What else do you need?
Does it work, or does it not work? :)
2- The real configuration of the web server must be done on the another server? Consider below figure:
Code: Select all
The Internet --> Reverse Proxy Server --> Apache Web Server
The SSL configuration and other Apache hardening and configuration must be done on the Apache Web Server and not the Reverse Proxy Server?
Well in your case your reverse proxy is forwarding to a http server (
http://server-ip ), which leaves only one option as to where to implement TLS.
I have the feeling that this is a homework question, so I'll stop here, just in case :)