Topic: URL Redirect/Forwarding ?

[mind]

Hi,

Description :
- Windows 2008 server
- Apache 2.4 into a DMZ

What I did in HTTPD.CONF file :
comment #Listen 80
UNcomment following lines
-LoadModule proxy_module modules/mod_proxy.so
-LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
-LoadModule proxy_http_module modules/mod_proxy_http.so
-LoadModule rewrite_module modules/mod_rewrite.so
-LoadModule ssl_module modules/mod_ssl.so
-Include conf/extra/httpd-ssl.conf
-LoadModule socache_shmcb_module modules/mod_socache_shmcb.so

I did also create a self sign SSL certificate.

From the WAN, users will conect with such an URL
https://mob.domain.com:10445
This URL can be resolved from DNS.

What i try to do :

The Apache server must be configure to accept connection only from the ip addres of the FW
The apache server must act as a Reverse Proxy and redirect the URL to an internal server with the following URL HTTP://mob.domain.com:10445/something.xxx

Of course, external peoples should only see the url they input to connect.

Any advice to secure Apache server are welcome.

Thanks for your reply.

[admin]

The subject of your post says URL Redirect/Forwarding , but when I read, I understand you want ProxyReverse.

When on the same server:
ProxyPreserveHost On
ProxyPass / http://127.0.0.1:10445/
ProxyPassReverse / http://127.0.0.1:10445/

On an other server box:
ProxyPreserveHost On
ProxyPass / http://mob.domain.com:10445/
ProxyPassReverse / http://mob.domain.com:10445/

More details at http://httpd.apache.org/docs/2.4/mod/mod_proxy.html#proxypass

Steffen

[mind]

Hello,

If I uderstand, the only thing i have to do is adding following lines into the HTTPD.conf ?

ProxyPreserveHost On
ProxyPass / http://mob.domain.com:10445/
ProxyPassReverse / http://mob.domain.com:10445/

is this correct ?

Thanks.