In using this SSL VirtualHost config with the ProxyPass option
we are seeing that the source IP address of the proxy request
does not come from the VirtualHost 10.82.40.101, but from the
main http server IP 10.82.40.100. Does anyone know why this would
be or how to correct it?
<VirtualHost 10.82.40.101:443>
ServerName webmail.somedomain.com
DocumentRoot /usr/local/websites/webmail.somedomain.com/htdocs
ServerAdmin [EMAIL PROTECTED]
DirectoryIndex index.html index.htm
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:!LOW:!SSLv2:!EXP:!eNULL
SSLProtocol all -SSLv2
RequestHeader set Front-End-Https "On"
Header set Cache-Control "no-cache"
Header set Cache-Control "no-store"
Header set Cache-Control "private"
Header set Pragma "no-cache"
# SSLProxyEngine on
SSLVerifyClient none
SSLCertificateFile
/usr/local/apache2/conf/ssl.crt/webmail.somedomain.com.crt
SSLCertificateKeyFile
/usr/local/apache2/conf/ssl.key/webmail.somedomain.com.key
SSLCertificateChainFile /usr/local/apache2/conf/ssl.crt/mdpca.crt
<Directory "/usr/local/websites/webmail.somedomain.com/htdocs">
Options FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all
</Directory>
<Proxy * >
Order deny,allow
Allow from all
</Proxy>
ProxyPreserveHost On
ProxyRequests Off
#fts-search
ProxyPass /fts-search
http://webmail.subd.somedomain.com:8080/fts-search
ProxyPassReverse /fts-search
http://webmail.subd.somedomain.com:8080/fts-search
DumpIOInput Off
DumpIOOutput Off
Loglevel Warn
ErrorLog /usr/local/websites/webmail.somedomain.com/logs/error_log
CustomLog
/usr/local/websites/webmail.somedomain.com/logs/access_log combined
CustomLog
/usr/local/websites/webmail.somedomain.com/logs/ssl_access_log "%t %h
%{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]