blog.dvankevich.pp.ua.ssl.conf

bangor 2020-09-082020-09-08 1 Comment

ServerName blog.dvankevich.pp.ua

#This directive toggles the usage of the SSL/TLS Protocol Engine for proxy. Without this you cannot use HTTPS URL as your Origin Server
SSLProxyEngine on
SSLProxyVerify none
SSLProxyCheckPeerCN off
SSLProxyCheckPeerName off
SSLProxyCheckPeerExpire off

# To prevent SSL Offloading
# Set the X-Forwarded-Proto to be https for your Origin Server to understand that this request is made over HTTPS #https://httpd.apache.org/docs/2.2/mod/mod_headers.html#requestheader.
RequestHeader set X-Forwarded-Proto “https”
RequestHeader set X-Forwarded-Port “443”

# The ProxyPass directive specifies the mapping of incoming requests to the backend server (or a cluster of servers known as a Balancer group).
# It proxies the requests only with matching URI “/blog”

ProxyPass / https://192.168.191.112/

#To ensure that and Location: headers generated from the backend are modified to point to the reverse proxy, instead of back to itself, #the ProxyPassReverse directive is most often required:

ProxyPassReverse / https://192.168.191.112/

# The CacheDisable directive instructs mod_cache to not cache urls
#CacheDisable *

Join the Conversation

1 Comment

bangor says:

2020-09-08 at 22:36

add to /etc/apache2/sites-available/blog.dvankevich.pp.ua.vhost-le-ssl.conf

SSLProxyEngine on SSLProxyVerify none SSLProxyCheckPeerCN off SSLProxyCheckPeerName off SSLProxyCheckPeerExpire off RequestHeader set X-Forwarded-Proto “https” RequestHeader set X-Forwarded-Port “443” ProxyPass / https://192.168.191.112/ ProxyPassReverse / https://192.168.191.112/

Log in to Reply

Leave a comment

Cancel reply

You must be logged in to post a comment.