Hi all ,
I am trying to configure a reverse proxy apache with certificate and redirect to a tomcat without certificate.
The first question is to know if this is possible?
I am doing this configuration
<VirtualHost *:8084>
ServerAdmin sistemas@xxxxx.com<mailto:sistemas@xxxxx.com>
ServerName clientes.xxxxxx.com
ServerAlias clientes.xxxxxl.com
DocumentRoot /var/www/
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyPreserveHost On
ProxyPass /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverse /dpisaas-web http://192.168.10.50:8080/dpisaas-web
</VirtualHost>
<IfModule mod_ssl.c>
<VirtualHost *:8085>
ServerAdmin sistemas@xxxxx.com<mailto:sistemas@xxxxx.com>
ServerName clientes.xxxxxxx.com
ServerAlias clientes.xxxxxxx.com
SSLEngine on
SSLProxyEngine On
SSLCertificateFile /etc/ssl/xxxxxx.crt
SSLCertificateKeyFile /etc/ssl/xxxxx.com.key
SSLCertificateChainFile /etc/ssl/xxxxx-chain.crt
DocumentRoot /var/www/
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyRequests On
ProxyPreserveHost On
ProxyPass /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverse /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverseCookiePath /dpisaas-web /dpisaas-web
</VirtualHost>
</IfModule>
the first configuration (NO SSL) works correctly.
The second configuration (once the apache is configured to listen on port 8085 for SSL requests) does not give me an error, it recognizes the SSL certificate, but it leaves the screen blank, it does not load the TOMCAT app.
Have you had a similar situation? Something is missing in the configuration?
Many Thanks!!
Saludos
La informaci?n contenida en esta comunicaci?n est? destinada ?nicamente al uso de la persona o entidad a la que va dirigida y a otras personas autorizadas a recibirla. Puede contener informaci?n confidencial o legalmente privilegiada. Si usted no es el destinatario previsto, se le notifica que cualquier divulgaci?n, copia, distribuci?n o acci?n en base al contenido de esta informaci?n est? estrictamente prohibida y puede ser ilegal. Si ha recibido esta comunicaci?n por error, le rogamos que nos lo notifique inmediatamente respondiendo a este correo electr?nico y que lo borre de su sistema. Cad It Espa?a no se responsabiliza de la correcta y completa transmisi?n de la informaci?n contenida en esta comunicaci?n ni de cualquier retraso en su recepci?n.
The information contained in this communication is intended solely for the use of the individual or entity to whom it is addressed and others authorized to receive it. It may contain confidential or legally privileged information. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. Cad It Spain is neither liable for the proper and complete transmission of the information contained in this communication nor for any delay in its receipt.
[http://www.cadit.es/arbol.jpg] Para conservar el ambiente, por favor no imprima este correo electr?nico a no ser que sea absolutamente esencial.
I am trying to configure a reverse proxy apache with certificate and redirect to a tomcat without certificate.
The first question is to know if this is possible?
I am doing this configuration
<VirtualHost *:8084>
ServerAdmin sistemas@xxxxx.com<mailto:sistemas@xxxxx.com>
ServerName clientes.xxxxxx.com
ServerAlias clientes.xxxxxl.com
DocumentRoot /var/www/
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyPreserveHost On
ProxyPass /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverse /dpisaas-web http://192.168.10.50:8080/dpisaas-web
</VirtualHost>
<IfModule mod_ssl.c>
<VirtualHost *:8085>
ServerAdmin sistemas@xxxxx.com<mailto:sistemas@xxxxx.com>
ServerName clientes.xxxxxxx.com
ServerAlias clientes.xxxxxxx.com
SSLEngine on
SSLProxyEngine On
SSLCertificateFile /etc/ssl/xxxxxx.crt
SSLCertificateKeyFile /etc/ssl/xxxxx.com.key
SSLCertificateChainFile /etc/ssl/xxxxx-chain.crt
DocumentRoot /var/www/
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
ProxyRequests On
ProxyPreserveHost On
ProxyPass /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverse /dpisaas-web http://192.168.10.50:8080/dpisaas-web
ProxyPassReverseCookiePath /dpisaas-web /dpisaas-web
</VirtualHost>
</IfModule>
the first configuration (NO SSL) works correctly.
The second configuration (once the apache is configured to listen on port 8085 for SSL requests) does not give me an error, it recognizes the SSL certificate, but it leaves the screen blank, it does not load the TOMCAT app.
Have you had a similar situation? Something is missing in the configuration?
Many Thanks!!
Saludos
La informaci?n contenida en esta comunicaci?n est? destinada ?nicamente al uso de la persona o entidad a la que va dirigida y a otras personas autorizadas a recibirla. Puede contener informaci?n confidencial o legalmente privilegiada. Si usted no es el destinatario previsto, se le notifica que cualquier divulgaci?n, copia, distribuci?n o acci?n en base al contenido de esta informaci?n est? estrictamente prohibida y puede ser ilegal. Si ha recibido esta comunicaci?n por error, le rogamos que nos lo notifique inmediatamente respondiendo a este correo electr?nico y que lo borre de su sistema. Cad It Espa?a no se responsabiliza de la correcta y completa transmisi?n de la informaci?n contenida en esta comunicaci?n ni de cualquier retraso en su recepci?n.
The information contained in this communication is intended solely for the use of the individual or entity to whom it is addressed and others authorized to receive it. It may contain confidential or legally privileged information. If you are not the intended recipient you are hereby notified that any disclosure, copying, distribution or taking any action in reliance on the contents of this information is strictly prohibited and may be unlawful. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. Cad It Spain is neither liable for the proper and complete transmission of the information contained in this communication nor for any delay in its receipt.
[http://www.cadit.es/arbol.jpg] Para conservar el ambiente, por favor no imprima este correo electr?nico a no ser que sea absolutamente esencial.