{"id":362,"date":"2013-08-23T16:34:46","date_gmt":"2013-08-23T21:34:46","guid":{"rendered":"http:\/\/www.compdigitec.com\/labs\/?p=362"},"modified":"2013-08-23T16:34:46","modified_gmt":"2013-08-23T21:34:46","slug":"reverse-proxy-https-with-apache","status":"publish","type":"post","link":"http:\/\/www.compdigitec.com\/labs\/2013\/08\/23\/reverse-proxy-https-with-apache\/","title":{"rendered":"Reverse proxy HTTPS with Apache"},"content":{"rendered":"<p>The procedure is mostly similar to the <a href=\"http:\/\/www.compdigitec.com\/labs\/2010\/08\/11\/setting-up-a-http-gateway-on-ubuntu-10-04\/\">procedure with regular HTTP<\/a>, but there are a few gimmicks involved here:<\/p>\n<ol>\n<li>Generate a self-signed one or purchase a SSL certificate (*.crt) for the server in question.<\/li>\n<li>Make sure you run &#8216;<strong>sudo a2enmod ssl<\/strong>&#8216; to enable SSL.<\/li>\n<li>Make sure you have enable the proxy module with &#8216;<strong>sudo a2enmod proxy<\/strong>&#8216; as well.<\/li>\n<\/ol>\n<p>Below is a sample reverse HTTPS proxy configuration.<\/p>\n<pre class=\"brush: xml; title: ; notranslate\" title=\"\">\r\n&lt;VirtualHost *:443&gt;\r\n    &lt;Proxy *&gt;\r\n     Order Deny,Allow\r\n     Allow from all\r\n    &lt;\/Proxy&gt;\r\n\r\n SSLEngine On\r\n SSLProxyEngine On\r\n SSLCertificateFile \/etc\/apache2\/cert\/server.crt &lt;!-- path to your certifcate and key --&gt;\r\n SSLCertificateKeyFile \/etc\/apache2\/cert\/server.key\r\n SSLProxyCheckPeerCN off\r\n SSLProxyCheckPeerExpire off\r\n SSLProxyCheckPeerName off\r\n\r\n ProxyRequests Off\r\n ProxyPass \/ https:\/\/192.168.42.3\/\r\n ProxyPassReverse \/ https:\/\/192.168.42.3\/\r\n ProxyPreserveHost On\r\n&lt;\/VirtualHost&gt;\r\n<\/pre>\n<p>Replace <strong>192.168.42.3<\/strong> with the internal IP address of your server, as before (keep the http(s):\/\/ portion).<\/p>","protected":false},"excerpt":{"rendered":"<p>The procedure is mostly similar to the procedure with regular HTTP, but there are a few gimmicks involved here: Generate a self-signed one or purchase a SSL certificate (*.crt) for the server in question. Make sure you run &#8216;sudo a2enmod ssl&#8216; to enable SSL. Make sure you have enable the proxy module with &#8216;sudo a2enmod [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[16,834,862,724,729],"_links":{"self":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts\/362"}],"collection":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/comments?post=362"}],"version-history":[{"count":0,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts\/362\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/media?parent=362"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/categories?post=362"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/tags?post=362"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}