RE: NETSCAPE PROXY SERVER & SSL

Orlando Jr, Paul M Tue, 09 May 2000 07:40:29 -0700
Kevin,

I take it you are referring to setting up the proxy as a reverse proxy for
you website.  If you have the certificate installed on the proxy, there are
two ways you can setup the access to the internal webserver, http or https.
If you go into the admin of the proxy and into your secure web instance,
click on the URL box at the top of the screen.  Then you want to setup up
your reverse mappings from the webserver.  These mappings should include the
URL that the backend webserver is configured with and a reverse mapping of
the IP address:

EX.
Reverse mappings
                 Prefix (Location from redirect)        Map to (returned to
client)

                 https://backend.webserver.com
https://www.sitename.com

                     https://172.28.x.x
https://www.sitename.com

The https in the prefix can be replaced with http if you are going with an
unsecure connection to the backend machine.  Note also that there is a bug
with the mappings, and in the obj.conf file the reverse mapping should
always come before the regular mapping, otherwise the backend URL will show
in some cases.

Next setup up the regular mappings.  The web request will come to the proxy
as a request for a doc in the doc root, so your mapping should look like the
following:

Regular mappings
                       URL prefix (from client)        Map to (proxy will
use this)


                       /
https://backend.webserver.com

this can also be a request to an IP address( if you are not resolving names
on the proxy), and the certificate name on the backend webserver doesn't
matter.  Remember that this will be http or https, depending on the
connection type you decide on.

These should get your servers to talk, as long as the routing is correct,
and the firewall ports are open for your connection.  


Good Luck.

Paul

-----Original Message-----
From: Kevin Johnston [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 09, 2000 9:57 AM
To: [EMAIL PROTECTED]
Subject: NETSCAPE PROXY SERVER & SSL


Hi:

Does anyone have any experience getting Netscape Proxy Server to talk
SSL?  I am trying to get it to talk SSL to an internal Webserver.  Setup
looks like this:

[INTERNET] ---- [NETSCAPE PROXY] ---- [FW] ---- [WEBSERVER]

Bypassing the Proxy to the Webserver via HTTPS works great.  When I try
to use the proxy using HTTPS, it doesn't work.  Netscape documentation
is poor at best.  It hardly discusses SSL at all so not sure technically
how to get this to work.  Thanks for any assistance.

Kevin



-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
RE: NETSCAPE PROXY SERVER & SSL

Reply via email to
