web 101

[Roger Oberholtzer]

On Wed, 2006-06-14 at 15:14 +1000, James McDonald wrote:

> I use apache reverse proxy on the firewall if it's Linux this is the
> config for my https virtual host
> 
> <VirtualHost *:443>
> 	ServerName yourserver.domain.com
> 	ProxyPreserveHost On
> 	UseCanonicalName        Off
> 	SSLEngine on
> 	SSLProxyEngine on
> 	SSLVerifyClient none
> 	SSLCertificateFile conf/ssl.crt
> 	SSLVerifyDepth 10
> 	SSLCertificateKeyFile conf/ssl.key
> 	RewriteEngine  On
> 	ProxyRequests Off
> 	ProxyVia On
> 	RewriteRule     ^(.*)?/iisadmin/? - [F]
> 	RewriteRule     ^(.*)?/samples/? - [F]
> 	RewriteRule     ^(.*)?/scripts/? - [F]
> 	RewriteRule     ^(.*).ida$ - [F]
> 	RewriteRule     ^(.*).htw$ - [F]
> 	RewriteRule     ^(.*)./_vti/_. - [F]
> 	RewriteRule     ^(.*).idq$ - [F]
> 	RewriteRule     ^(.*).exe$      -       [F]
> 	RewriteRule     ^(.*)?/winnt/?    -       [F]
>         ProxyPass /exchange/ https://internal.bugzilla.local/exchange/
> 	ProxyPassReverse /exchange/ https://internal.bugzilla.local/exchange/
>        ProxyPass /public/ https://internal.bugzilla.local/public/
>        ProxyPassReverse /public/ https://internal.bugzilla.local/public/
> </VirtualHost>

I gather you use this against bugzilla. What are the RewriteRules for?
You don't just pass all references to /exchange/ and /public/ on to the
internal machine? Also, what is the Reverse stuff? I have never used
this.

Finally, how did you generate the ssl certs?

-- 
Roger Oberholtzer

OPQ Systems AB
Ramb?ll Sverige AB
Kapellgr?nd 7
P.O. Box 4205
SE-102 65 Stockholm, Sweden

Tel: Int +46 8-615 60 20
Fax: Int +46 8-31 42 23