Date: Mon, 14 Jun 2004 13:18:22 +0200 (CEST) From: =?iso-8859-1?q?Claus=20Guttesen?= <cguttesen@yahoo.dk> To: Haim Ashkenazi <haim@babysnakes.org>, freebsd-stable@freebsd.org Subject: Re: need suggestions for reverse proxy Message-ID: <20040614111822.1564.qmail@web14106.mail.yahoo.com> In-Reply-To: <pan.2004.06.14.09.41.50.727310@babysnakes.org>
next in thread | previous in thread | raw e-mail | index | archive | help
> I'm looking for a reverse proxy for https to protect > an IIS server. at the > moment I'm using "pound" but then the IIS doesn't > recognize where the > original request came from so I can't do things like > allow,deny from a > certain IP or use awstats. It should be able to deal > with sessions and > load balancing (although at the moment I only have You may try squid, although I doubt that squid works with https in your setup. Squid needs to know the private keys in order to decrypt the session-info so it can be session-aware. One way to deal with this is to let squid decrypt and pass it on to IIS as cleartext. Squid is capable of removing unwanted URL's. But statefull loadbalancing may not be squids strength. We are using LVS (Linux Virtual Server). Although I would have preferred a BSD-solution, nothing beats LVS in terms of scalability. Had an old 486 with 64 MB RAM, which could handle more than 10.000 unique visitors a day. Claus Yahoo! Mail (http://dk.mail.yahoo.com) - Gratis: 6 MB lagerplads, spamfilter og virusscan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040614111822.1564.qmail>