Server :: Apache2 Mod_proxy Failing With Ssl
May 14, 2010
I seem to be having a problem with mod_proxy and https websites. A simple connection to port 80 works fine but all calls to 443 fail.
I had a look at my firewall but can't see anything that would block port 443, although I get no tcpdump traffic on that port on the deb01 client when I try and connect to it. I disabled the firewall but still no luck.
My configuration consists of 3 VMs (KVM) each running a different website.
I get the following error when connecting to ssl deb01
Code: An error occurred during a connection to deb03.example.com.
SSL received a record that exceeded the maximum permissible length.
(Error code: ssl_error_rx_record_too_long)
The following is what can be found on the host
Code:
View 1 Replies
ADVERTISEMENT
Apr 12, 2010
Dom0 is having public IP. I read a lot of blog and tutorials about name based and IP based hostings and also about mod_proxy. But I am unable to do.
Here is what I am trying to do. I have a webserver on public IP.Which is running Xen on it. There are 4 Guest Operating systems installed on top of Dom0 which are Dom1,Dom2,Dom3,Dom4 These are application servers which are going to serve the requests that come from the main server.Which is Dom0.
All I see is "It works" on all 4 of the hosts. On my LAN on any machine on same subnet if I do [url] of Domu1 message comes
Code:
in browser from LAN gives me a message
Code: It works.
What do I need to do on Dom0 so that requests are forwarded to the appropriate DomUs apache2 is running on all of them including Dom0.Some one suggested me to go for ReverseProxy in Apache2.
View 3 Replies
View Related
Mar 9, 2010
i'm using apache2 prefork as proxy (mod_proxy) and i'm facing some performance problems such freezes , for instance the entire server blocks and becomes totally unresponsive after several requests.
at first i thought that the system is running out of memory so i tweaked the mpm config and reduced the number of allowed processes that can start concurrently , however the problem still persists..would mpm worker serve better than prefork ?
View 1 Replies
View Related
Dec 24, 2010
I have a server acting as a proxy to a couple of IP cameras on my local network. The IP cameras require HTTP-Authentication (Basic) but I want the outward facing Apache server to automatically log in without prompting the user for a login.
My current configuration is:
Code:
That works as a proxy but still asks for a HTTP Auth login. Can I get Apache to pass the login details to the IP cameras so users can just hit up the proxy and view the camera without having to log in?
View 2 Replies
View Related
Mar 20, 2010
I have a php app set up in the default virtualhost, and want to add a Grails app. The grails app runs on [URL] and I want to configure apache2 to proxy that folder to Jetty using mod_proxy.
Module is enabled
Code:
$ sudo a2enmod proxy
Module proxy already enabled
[code]....
Quote:
[Sun Mar 21 00:14:56 2010] [warn] proxy: No protocol handler was valid for the URL /mailscan. If you are using a DSO version of mod_proxy, make sure the proxy submodules are included in the configuration using LoadModule. My apache2.conf contains no LoadModule lines, and a2enmod says it's already enabled. Does Ubuntu Desktop (Karmic) use the DSO versions of modules, or did I miss something else? I'm aware I should also use mod_proxy_html to make sure only the "portless" version of the address is outputted, but I can fix that later!
View 1 Replies
View Related
Nov 19, 2010
I have suse10 64 bit installed. I am setting up a svn server on it. After installation and adding the modules ,while reloading the apache2 it's throwing the error as: HTML Code: httpd2-prefork: Syntax error on line 113 of /etc/apache2/httpd.conf: Syntax error on line 31 of /etc/apache2/sysconfig.d/loadmodule.conf: Cannot load /usr/lib64/apache2/mod_dav_svn.so into server: /usr/lib64/libsvn_subr-1.so.0: undefined symbol: apr_memcache_add_server
View 9 Replies
View Related
Dec 9, 2009
I am getting this error
Starting web server: apache2[Wed Dec 09 15:36:40 2009] [warn] NameVirtualHost XX.XX.XX.XXX:80 has no VirtualHosts(99)Cannot assign requested address: make_sock: could not bind to address 68.178.232.100:80
no listening sockets available, shutting down Unable to open logs failed!
also what is 68.178.232.100
View 1 Replies
View Related
Nov 3, 2010
I have figured out how to use virtualhost, proxypass and proxypassreverse. So far, so good.
The problem I'm experiencing is this:
I have a reverse proxy server running apache (123.123.123.123)
Behind this proxy server I have a http server running apache (124.124.124.124).
This http server has multiple sites (virtualhost), it's only reachable via the proxy server.
If i run a nslookup on www.somedomain.com I get 123.123.123.123 (Not really but you understand what I mean)
I put my proxy to have the IP 123.123.123.123, so far so good. The requests come in to the proxy server.
I want my http server to be named 124.124.124.124.
In the http server I wish to set up my virtualhosts like this:
How do I get my proxy to grab the data from the http server?
If I do like this I will only make another request to my proxy server.
If I do like this, only the first page in the httpd.conf in my http server will work.
Do I need to setup a different DNS server for the proxy server? I would hate that. Perhaps use hosts-file in proxy. Or maybe I can use sub-domains?
View 1 Replies
View Related
Mar 31, 2011
I'm using CentOS 5 and just found out that there are people using my Apache Web Server as proxy (version 2.2.3 the OS's default).
I've checked out that my mod_proxy is already disabled but the unauthorized incoming request is still very large.
So I tried to compile an Apache from raw (2.2.17) just enabling mod_rewrite and then found out that the 'proxy' request is still there.
Tried httpd -l and here are the modules inside the Apache :
Code:
# /opt/apachew/bin/httpd -l
Compiled in modules:
core.c
mod_authn_file.c
[Code]....
There should be no mod_proxy but why should it still accepting proxy request? I checked the access_log file and still found [URL] and so on.
My question is : - How to block all the proxy request and only accepting the normal web server request? I also have tried to enable proxy in the previous Apache and then setting up "ProxyRequest Off" and Proxy * only from localhost but the request is still there.
I tried by myself using the webserver as proxy in browser and all the URLs I opened including the false URL will be redirected to my index.php and this should show me that 'you-can't-use-this-as-proxy-anymore' right?
Insane people still believe they could use my server and they keep trying and trying.
I couldn't block the IP addresses because some of them are using the mobile data (GPRS/UMTS) and that is our market for the website.
View 5 Replies
View Related
Apr 29, 2010
I have just been told that httpd was not running on my Centos virtual server. It seems that my hosting company rebooted my server 2 days ago and that httpd restart failed due to:
Starting httpd: httpd:
Syntax error on line 213 of /etc/httpd/conf/httpd.conf:
Syntax error on line 2 of /etc/httpd/conf.d/proxy_ajp.conf:
Cannot load /etc/httpd/modules/mod_proxy_ajp.so into server: /etc/httpd/modules/mod_proxy_ajp.so: undefined symbol: proxy_module
I had worked around and forgotten about this some time ago. The problem arose because the most recent httpd update installed proxy_ajp.conf into /etc/httpd/conf.d which was then loaded on restart The trouble is I do not use mod_proxy (I think just to try and get a lean and mean web server) and proxy_ajp.conf does not check if mod_proxy is loaded before it tries to LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
Hence httpd fails to restart. RedHats's bug tracker lists this as an old issue (which was never resolved) [URL] My workaround was to rename proxy_ajp.conf to proxy_ajp.conf.orig so that httpd would start up correctly. However any updates simply reinstall proxy_ajp.conf and so IMO the problem needs to be resolved at source. how to ensure that httpd updates do not bite me in the future? Do I really have to run mod_proxy whether or not I need it?
View 6 Replies
View Related
Aug 29, 2010
I need to setup a Linux VPN server at work for resources' sharing, I currently have a server running CentOS 5.4, and tried endless tutorials on the web, but to no avail, and can't find where the logs are kept for the VPN server to check where the error is. But all my attempts to try to connect keep failing.
View 9 Replies
View Related
Oct 24, 2010
Using Debian Lenny I'm getting the following message in my mail: /etc/cron.daily/logrotate:
Quote:
apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for ServerName
View 1 Replies
View Related
Mar 17, 2011
I have set up a nis slave server on Fedora 14. It was set up on a laptop so that the user can log in when he is at home (no NFS, local home dir). However, whenever the eth0 is disconnected, ypbind fails.
I have tried the same setup on a RHEL 4 (configured it as a slave server) against the same master nis as on the Fedora 14. Disabling eth0 on it however does not fail ypbind.
View 4 Replies
View Related
Apr 15, 2010
I have a proxy with SSL that forward any request to a backend platform. In this moment I have a problem if I'm trying to execute an activex on the backend platform. I'm reading that the mod_proxy blocks any activex request because it don't trust for the system. How I can do? I'm reading about mod_security.
Code:
View 2 Replies
View Related
Jun 10, 2010
I have created a VPN through network manager to a Windows 2003 server.
However when I try connecting it fails every time, I have tested with a windows XP client and this works so this would indicate I am doing something wrong in the network manager configuration.
View 2 Replies
View Related
Jun 29, 2011
I have a Redhat fedora core release 6 (2.6.22.9-61.Ns4) server and form time to time ssh fails although I am still able to ping the device and with a reboot the device will start working correctly so upon further investigation it appears the sshd daemon fails.Not knowing a great deal about Linux I thought I would ask some advice on the path I am thinking of taking. The first would be to put an entry in the cron to try and start the ssdh every hour or so. Would this cause issues in the long term run it multiple times when the sshd daemon was still running?
The Second though I had was having a bash script to check if the process was running and if not restarts it and if it was just exit the program which would seem like a neater way to do it but this is where my limited Linux knowledge hits a wall so was looking for suggestion on how to implement this?
View 5 Replies
View Related
Apr 15, 2010
I have an httpd server with mod_proxy that forward any request to an another server.
the flow is: client --> requesto proxy [url]forward to server [url]
I'm reading this error in my httpd log in LogLevel debug (after some request):
Code:
Code:
and this is my ssl.conf in /etc/httpd/conf.d
Code:
how I can find the root cause?
View 2 Replies
View Related
Nov 19, 2010
I'm working on setting up a hosted OSS app on a VPS and have a question about doing some proxying. I have Centos 5.5/Apache 2.2 running on 2 VPS's, in different locations, accessible from the net. One of these hosts the app itself, the other will be used as a web portal where the end user will login to auth and then be able to access the app. Now, since I don't wan't access to the app server from the world at large, I want to firewall it and only allow access from the portal machine. So what I think I need to do is set up a reverse proxy with mod_proxy, and then if the end user auths forward them to a specific url on the app server.
So when they connect to [url] and log in I need them to be redirected to app.machine.com/theirdir
So the questions I have are:
1) Can this be done? If so, is mod_proxy the way to do it? Configuring Apache isnt a problem, but I havent worked with mod_proxy.
2) If this does work, will it also work with SSL?
3) I've seen a few small tutorials on the net, but not doing exactly what I want to. They all use the reverse proxy with a public IP connecting to a server with a private IP behind a firewall, while I have public IP's on both ends. From a network standpoint I know this shouldn't matter, but I'm not familiar with mod_proxy's particulars itself.
View 1 Replies
View Related
May 12, 2010
I'm running 10.04 with Apache2/PHP5.x I wanted to test some basic cgi scripts, but my browser is displaying the code (#!...) If I run the scripts on the console, they work fine so CGI is not the problem, it's apache. To install the CGI module I ran sudo apt-get install libapache2-mod-perl2 with no problems. By the way, I installed Apache through apt-get instead of doing it manually, but it seems that the installation divides the conf file in different parts, so the regular apache2.conf has this:
Code:
# Include module configuration:
Include /etc/apache2/mods-enabled/*.load
Include /etc/apache2/mods-enabled/*.conf
# Include all the user configurations:
Include /etc/apache2/httpd.conf
# Include ports listing
Include /etc/apache2/ports.conf
[Code]....
I can't figure out what I need to do to get CGI working on my server.
View 9 Replies
View Related
Jun 15, 2010
I am having some problems after installing apache2-mpm-itk on my Debian 5.4 server. From my understanding apache2-mpm-itk will run child processes as root until a http request is received. It then suid's to the username in the VirtualHost directive. This is all working fine, as I can see a few apache processes started by a specific user.
However, the problem is when I try to restart apache. It will kill all the processes running by root but wont kill any of the processes that have been suid'ed to another username.
When i attempt to restart I get this error:
Code:
charged:/etc/apache2# /etc/init.d/apache2 restart
Restarting web server: apache2 ... waiting (98)Address already in use: make_sock: could not bind to address [::]:80
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80
[Code]....
If I do a "ps aux | grep apache" before and after I see all the root processes killed, but processes running as specified users from VritualHost directive remaining.
Now I am not an extreme linux power user, but I know a bit.
View 1 Replies
View Related
Apr 30, 2010
I downloaded grails [URL]... and installed it. Created a sample application hello world. It was running successfully. In browser [URL].. I was able to see grails running. Now comes the problem. To be able to always start the grails application running after boot I wrote a script in /etc/init.d/software_grails its contents are
[code]...
I have to open command prompt and go to /root/helloworld and then execute grails run-app. you dont have to write the name of application to run it. logging of boot messages is enabled /etc/default/bootlogd BOOTLOGD_ENABLE=Yes. then I opened /var/log/boot.
[code]...
But it does not work. If I am not wrong then above method will work ONLY WHEN some one Logs in not on boot time. Is there a way where I can embed grails in apache2 they [URL]... have not mentioned any thing about apache2 to deploy my applications.
View 2 Replies
View Related
Jul 23, 2011
I would like to ask how can I optimize apache2 load on my dedicated server. I am hosting Facebook applications on it, but most users will get a Timed Out message when they try to access it. I was tinkering with MaxClients directive in apache2 config, and it got better, but still it's not best. Programmers are trying their best to optimize the applications at their side, but I am afraid this is an server issue.
View 2 Replies
View Related
Sep 14, 2010
I want to learn perl CGI. I tried to configure it on apache server. But when I was searching about it in the net, I faced some difficulties. Each and every post has been leaded me in different way. I am confused now. I have done this,
1. Installed this libapache2-mod-perl2 module
2. Then I checked the /etc/apache2/mods-available/ using ls command for checking the module availability.Here I mentioned the output of ls command.
[Code]...
View 2 Replies
View Related
May 24, 2011
I have lots of bots searching for broken PHPAdmin URL's showing up in my apache2 logs. (Guess why I don't run PHPAdmin)
View 1 Replies
View Related
Nov 6, 2010
I have a problem about redirection over Apache2 over Debian Lenny. We have build a LAMP, and our programmer make a software with these features:
When you put on your browser (i.e.) [URL], you access to the program in /var/www/vhosts/hugohome/inside. And when you put [URL] you access to the program in /var/www/vhosts/hugohome/outside. Today, if you just put [URL] our Apache answers 403 (forbidden), because we had blocked folder access. (You know....isn't the right way). Our Apache's Document Root is in /var/www/vhosts/hugohome.
Our goal is to change definitely [URL] to access -> /var/www/vhosts/hugohome/inside. This is our main intention. Also, we can continue with [URL] pointing to /var/www/vhosts/hugohome/outside. I thought, hmm easy!: I can change the DocumentRoot to /var/www/vhosts/hugohome/inside and try with an Alias to outside. But the problem is that the programmer has taken the software reference with /var/www/vhosts/hugohome and when I tried to change the Document Root the programs didn't work fine (loops, error 404, etc).
How can I do?. I have tried with Apache with many manners, but I just have a relative success with: "RedirectMatch ^/$ [URL]". It works, but the Browser shows the ugly [URL]. Our intention is just show [URL]. Unfortunately we can't work directly with the DNS servers, and I guess that I can resolve with (i.e.) Apache and Bind together.
View 3 Replies
View Related
May 10, 2011
why apache2 won't run my shell script i made.So in detail this is what i want it to do. I have a apache2 web-server running on my mac and i found some shell commands that control itunes so i wrote a shell script that basically pause's itunes. Now i have put the shell script in the cgi executable folder. and the link for the webpage is http://10.10.0.110/cgi-bin/itunes.sh but when i goto the page in my browser it just keeps loading. I have run other scripts and they work and i don't think you need root access.
View 7 Replies
View Related
Nov 22, 2010
Im currently serving a web in apache2; no problems I recently set up squid to filter internet for my LAN users.
***i dont want squid to accelerate WEB requests in my apache2.
So the problem is that SQUID blocks my 192.168.1. LAN denied attemps, so far, its ok BUT IT ALSO BLOCKS ANY OF THE INTERNET USERS TRYING TO REACH MY HOSTED WEB.
Can i have both servers in the same box without interferring each other?
View 6 Replies
View Related
Apr 23, 2010
Its a silly problem but I am facing it.The OS is Debian Lenny ,apache2. I am having a webserver.www.mydomain.comand site1.mydomain.comsite1 is on a webserver which is on LAN.
On main server i.e. our Gateway
in /etc/apache2/sites-available/
I have
[code].....
View 4 Replies
View Related
Feb 4, 2011
For some reason my DNS servers aren't able to resolve certain names. Most names resolve fine there are just a few that don't work. Nslookup doesn't work either of course, and curiously neither does "whois".
Here's an example:
Quote:
dig facebookmail.com +trace
; <<>> DiG 9.2.4 <<>> facebookmail.com +trace
;; global options: printcmd
[code]...
View 2 Replies
View Related
Mar 14, 2011
I added the "@clustering" and "@kvm" keywords to my ks.cfg file but during installation, an error about not being able to find either of these packages popped up and it wasn't installed.
I do see the Cluster and VT directories in my redhat_es5.4 directory along with the Server directory. The rest of the files install just fine.
In doing some net and forum searching, I find a reference to a base.repo file that lists the directories but I'm not sure if it's related to creating a yum repository or if not, should it have been created in the redhat_es5.4 directory.
While I've built kickstarts for several years and am comfortable with the file, this is the first time I'm working with rpms outside the main Server path.
View 7 Replies
View Related
