Date: Wed, 18 Oct 2000 11:58:41 +0100 From: Adam Laurie <adam@algroup.co.uk> To: Ralph Huntington <rjh@mohawk.net> Cc: Rolf Edwards <redwards@meccamediagroup.com>, freebsd-security@FreeBSD.ORG Subject: Re: Multiple Web/SSL behind firewall Message-ID: <39ED8261.F07C784@algroup.co.uk> References: <Pine.BSF.4.21.0010171240570.86432-100000@mohegan.mohawk.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Ralph Huntington wrote: > > > > > >redirect_port tcp a.b.c.d:80 e.f.g.h:80 > > > > >redirect_port tcp a.b.c.d:443 e.f.g.h:443 > > > > > > > > The problem is that there are multiple web servers so that will not work, > > > > > >You could have multiple IP aliases on your outside net. Alternatively, > > >a single back end server that then does the > > >round-robin/load-balanced/whatever forwarding. (http://www.backhand.org/) > > > > Reviewing the backhand site, it looks as though it isn't a great fit. Hmmm... Not sure about the current situation with SSL, but I know that Ben is interested in make apache-ssl work with mod_backhand so if you wanted to go this way it would worth having a chat. > > You could still run a single back-end server that distributes the hits. > You could use mod_rewrite for that. It could handle port 80 and 443 also, > redirecting (rewriting) as you please based on the URL requested. This > could be name based as well if you run bind for it all inside. -=r=- Indeed. Or mod_proxy. cheers, Adam -- Adam Laurie Tel: +44 (20) 8742 0755 A.L. Digital Ltd. Fax: +44 (20) 8742 5995 Voysey House http://www.thebunker.net Barley Mow Passage http://www.aldigital.co.uk London W4 4GB mailto:adam@algroup.co.uk UNITED KINGDOM PGP key on keyservers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?39ED8261.F07C784>