[squid-users] Error: change IP public into IP private on Reverse Squid proxy and weblogic

From: David Gomez <dgc231@dont-contact.us>
Date: Tue, 29 Nov 2005 10:28:53 +0100

Hi all

I have the next configuration:

Client---->Reverse Squid proxy 2.5----> Weblogic Server 8
         |                         |
         |                         |
         |                         |
Port:    80                  7001
SSL port:443                443
IP:       Public                  Private
Servers: Server1 Server2

I install on Server1 Squid2.5Stable11 as Reverse Proxy, and on Server2
Weblogic Server 8.1

When I connect (via IE or Mozilla ) to my application (GET action) all
works, but when I login into the application (POST action) the browser
change IP to Private. Of course I want to access my application outside my
VPN and I can’t do this with this transformation:

http://Public_ip/aplication  ----> login --->http://private_ip:7001/admin

I try to change my etc/host file and add my private_ip (changing before
squid.conf with public_ip) but after that I can’t access to my login page.

It is some bug on squid Vs Weblogic? Anyone can help me?

Thanks

My squid.conf:

#hosts_file /usr/local/squidSSL/etc/hosts
#http_port xxx.xxx.xxx.xx:80
http_port 80
https_port 443 cert=/usr/local/squidSSL/etc/key.crt
key=/usr/local/squidSSL/etc/key.key
httpd_accel_port 7001
httpd_accel_single_host on
httpd_accel_host Private_ip
httpd_accel_with_proxy on
httpd_accel_uses_host_header off

forwarded_for off
redirect_rewrites_host_header off

icp_port 0
cache_mem 256 MB
cache_dir ufs /usr/local/squidSSL/var/cache 1024 16 256
cache_log /usr/local/squidSSL/var/logs/cache.log

cache_access_log /usr/local/squidSSL/var/logs/access.log
cache_store_log none
mime_table /usr/local/squidSSL/etc/mime.conf
pid_filename /usr/local/squidSSL/var/run/squid.pid
maximum_object_size_in_memory 2 MB
maximum_object_size 8 MB
redirect_program /usr/local/squirm1.23/bin/squirm
redirect_children 8
range_offset_limit -1 KB
connect_timeout 20 seconds
request_timeout 15 seconds
persistent_request_timeout 15 seconds

acl all src 0.0.0.0/0.0.0.0
http_access allow all
acl SSL method CONNECT
never_direct allow SSL

cache_effective_user user
cache_effective_group group

visible_hostname Public_ip
client_db off
#snmp_port 3401
#snmp_access allow all
coredump_dir /usr/local/squidSSL/var/cache
refresh_pattern -i css$ 1440 50% 1440 override-expire override-lastmod
ignore-reload

#debug_options ALL,1 33,2
Received on Tue Nov 29 2005 - 02:29:39 MST

This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:10 MST