- Subject: Is there any way to proxy/redirect SSL-connection to remote host
- From: alok pandey <alok.rhct@xxxxxxxxx>
- Date: Fri, 14 Aug 2009 11:59:35 +0530
Is there any way to proxy/redirect SSL-connections.
The scenario is :
[Browser]---HTTPS-->[Proxy-pass-WITHPUBLIC-IP (Apache)]---HTTPS-->[Back-end(tomcat)] (Private Network)
I want to setup Apache proxy-pass or redirection for all HTTPS/HTTP requests, as we have number of sit running behind one public ip. My setup is working fine for HTTP request but not for HTTPS request.
I am aware of that SSL-connection does not allow man-in-middle attack
and the proxy-pass(Apache) [in above scenario] is behaving same for it.
I want to know that :
--Is there any way to do it (by redirect) by iptables rules DNAT?
--Is it possible to write a iptables rule based on URL-request, If yes, can you provide me some good example or any pointer !
--Have any one done this before ?
--What are the alternate option for it ?
After lots of Gooogling I found one trick which sense as :
So , will the above work ? what points need to be consider while going for this setup.
Hope I am clear enough with my problem. I will love to provide more details , if needed for better understanding.
Redhat-install-list mailing list
To Unsubscribe Go To ABOVE URL or send a message to:
[Red Hat Kickstart]
[Red Hat General]
[Red Hat Development]