Hi,
reading various docs & ML threads about HTTPS reverse proxy, I set up
the following system:
(FW/SQUID/NAT)
|-> HTTP/HTTPS -> (NATted Web server)
|<- HTTP/HTTPS -< (NATted workstations)
What is strange is that, the Internet Client (Mozilla, or IE) use
https://URL/, get the certificate, and show the page.
The trouble is SQUID use the HTTP in the NAT segment( according to the
GET section of access.log). So directories allowed only in the HTTPS
VHost can't be reached - the server error is :
Not allowed, ... Apache... Port 80.
Even when the client URL is https://.../
Anyone can guess why ???
Thanks for any enlightenments,
Jo
PS: bits of revelant conf I have set
http_port $NAT_IP:8080
http_port $PUB_IP:80
https_port $NAT_IP:8443 cert=/etc/squid/www.myweb.crt key=/etc/squid/www.myweb.key
https_port $PUB_IP:443 cert=/etc/squid/www.myweb.crt key=/etc/squid/www.myweb.key
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
Received on Mon Apr 05 2004 - 07:25:40 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Apr 30 2004 - 12:00:01 MDT