OSDir


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[users@httpd] Apache2.4 forward proxy ssl between client and proxy server


HI 

I am looking for some help in configuring a forward proxy , the proxy has to listing on HTTPS port , clients needs to.connect. to proxy using  https .and below is how i wanted this to work , 


when i tried to access this with below configuration  i get an error but when I disable.ssl everything works as expected , I have issues only when I enable ssl on.forword proxy 


# curl -I -x https://172.16.130.2:443 https://example.com
curl: (56) Proxy CONNECT aborted

 testnew1.com-common]#



[Tue Apr 10 05:11:07.624150 2018] [proxy:debug] [pid 5709] proxy_util.c(1936): AH00931: initialized single connection worker in child 5709 for (*)
[Tue Apr 10 05:11:10.801076 2018] [ssl:info] [pid 5710] [client 172.16.135.4:59554] AH01964: Connection to child 2 established (server testnew1..com:443)
[Tue Apr 10 05:11:10.802312 2018] [ssl:info] [pid 5710] [client 172.16.135.4:59554] AH02008: SSL library error 1 in handshake (server testnew1..com:443)
[Tue Apr 10 05:11:10.802448 2018] [ssl:info] [pid 5710] SSL Library Error: error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request -- speaking HTTP to HTTPS port!?
[Tue Apr 10 05:11:10.802475 2018] [ssl:info] [pid 5710] [client 172.16.135.4:59554] AH01998: Connection closed to child 2 with abortive shutdown (server testnew1.com:443)


Listen 172.16.130.2:443

<VirtualHost  172.16.130.2:443>



ProxyRequests On
ProxyVia On
SSLProxyEngine On
SSLEngine On
SSLProxyVerify none
SSLCertificateFile /etc/pki/tls/certs/1.cert
SSLCertificateKeyFile /etc/pki/tls/private1.key
AllowConnect 80  443

<Proxy "*">
<RequireAny>
     Require expr %{HTTP_HOST} =~ /^example.com:443$/
</Proxy>

</VirtualHost>