html5,proxy,websocket,wampserver,reverse-proxy
I managed to solve this as follows: Client hosted on my machine at port 6060. Backend server is a Java servlet (annotated as "ChatProxy") running through Glassfish on my machine at port 8080. Proxy server is on a different machine, which listens on port 6060. The client uses a standard...
java,https,spring-security,reverse-proxy
If your site is HTTPS and you're running Apache Tomcat behind another system that's handling TLS termination, you can tell Tomcat to "pretend" that it's handling the TLS termination. This makes request.isSecure() return true; To do so, you need to add secure="true" to your Connector config in server.xml. https://tomcat.apache.org/tomcat-7.0-doc/config/http.html See...
github,oauth,https,reverse-proxy,gitlab
After some playing around I found out that setting the following in the nginx config solves the issue: proxy_set_header X-Forwarded-Proto https; Since I always want to access my gitlab instance via https, this works well for me and seems to also make oauth possible now. Sorry, I should've played around...
wordpress,symfony2,redirect,nginx,reverse-proxy
I think I managed to come with a so-so solution. Far from being perfect or clean, but... well, it works. blog.domain.com's config: server { listen 80; server_name blog.domain.com; root /home/webserver-blog; access_log /home/webserver-blog/logs/http_access.log; error_log /home/webserver-blog/logs/http_error.log; charset utf-8; client_max_body_size 65m; # Some extra speed open_file_cache max=1000 inactive=20s; open_file_cache_valid 30s; open_file_cache_min_uses 2; open_file_cache_errors...
One option is enfold proxy which is probably one of the first things to come up. I didn't realise at the time there was a free version otherwise I might have investigated that first; still now you get to benefit from my experiences. So If you don't want to use...
nginx,configuration,reverse-proxy
After further googling, I came upon this solution: location / { # Send 404s to B error_page 404 = @backendB; proxy_intercept_errors on; log_not_found off; # Try the proxy like normal proxy_set_header X-Forwarded-For $remote_addr; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_pass http://A; } location @backendB { # If A didn't work,...
apache,nginx,webserver,cpanel,reverse-proxy
You config is almost correct server { listen frontip:80 default_server; location / { proxy_pass http://127.0.0.1:8080; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_redirect http://$host:8000/ http://$host/; } } But best way to you do not use 8080 port. All you need is tell to nginx to bind only external ip. Add ip...
php,nginx,joomla,proxy,reverse-proxy
Resolved the issue.... The proxy was stripping all the request/get variables from the request. Note the changes under the "location" directive From proxy_pass http://$host$uri; To proxy_pass http://$host$request_uri; ...
if you want varnish to do nothing with the request at all you should use pipe. This prevens varnish from rewriting the headers. the response is send back from varnish direclty sub vcl_recv { return(pipe); } ...
Read about audit2allow and used it to create a policy to allow access to the denied requests for nginx. [root]# sudo cat /var/log/audit/audit.log | grep nginx | grep denied | audit2allow -m nginxlocalconf > nginxlocalconf.te [root]# cat nginxlocalconf.te module nginxlocalconf 1.0; require { type httpd_t; type var_t; type transproxy_port_t; class...
java,apache,reverse-proxy,apache-httpcomponents
HttpRequest and HttpResponse objects are very cheap. When implementing a proxy with HttpCore you should always be making a copy of incoming messages instead of passing the same object for several reasons: URI rewriting being one handling of so called hop-by-hop headers being another protocol upgrade / downgrade when for...
In order to use a regex you must use ProxyPassMatch: ProxyPassMatch ^/server-(\d+)/$ server-$1.{My server} The purpose of ProxyPassReverse is to fix any Location headers that the proxy server issues for itself. For example if I proxy mywebsite.com to bluewebsite.com and bluewebsite.com issues a redirect to bluewebsite.com/1, ProxyPassReverse will intercept it...
For the record, reverse proxy needed the directive ProxyPreserveHost On As it is set to Off by default there was an infinite redirection as Magento was trying to access the external address which was transformed as local ip by reverse proxy ans so on. With ProxyPreserveHost On reverse proxy transmits...
ubuntu,proxy,apache2,typo3,reverse-proxy
So now, I can say that not possible like I what to do (I think.) So now I use two ServerNames...
Your header contains underscore (_). By default nginx threats headers with underscore as invalid and drops them. You should enable underscores_in_headers directive. Otherwise, consider change header name to one without underscores. GH-client will be perfectly valid and proxied to your backend server....
i will recommend you two solutions: You can bind your application to listen on localhost:9999 rather than *:9999 you can edit your firewall to don't allow traffic for 9999 port and only allow for port 80. for that you can edit iptables by going to /etc/sysconfig/iptables ...
https,docker,reverse-proxy,boot2docker,docker-compose
I think your configuration should be correct, but it seems that this is the intended behaviour of jwilder/nginx-proxy. See these lines in the file nginx.tmpl: https://github.com/jwilder/nginx-proxy/blob/master/nginx.tmpl#L89-L94 It seems that if a certificate is found, you will always be redirected to https. EDIT: I found the confirmation in the documentation The...
apache,servlets,weblogic,reverse-proxy
I have finally got an answer from Oracle support on this. The problem was that i had to add one SSL directive to my virtual host configuration: SSLOptions +ExportCertData It goes under "IfModule ossl_module", right next to "SSLVerifyClient require" directive that specifies 2-way authentication for the proxy. Note that after...
It turns out everything works fine even though the annoying message persistently appears. I think it is a minor bug of the version.
caching,reverse-proxy,varnish,varnish-vcl
I really cannot see why there should be any case where this is useful. You create hit-for-pass objects when the VCL has no idea that the resulting response cannot be caches. If the VCL can figure our that the response should not be cached you should just "pass" and be...
apache,ionic-framework,virtualhost,reverse-proxy,mod-proxy
Do you have a specific reason to do like this ? Because if not and you only needs to check your app on a device there are few other alternatives. 1 - PhoneGap Developer app You can install this in your device (ex: IPhone) and as long as your phone...
apache,tomcat,https,reverse-proxy
any issue as in "anything else but additional setup requirements, more performance issues and more things to break"? I can't think of some, but refuse to give a blank "pass" to go with this. You'll have to argue for what you want to achieve. If you can't trust the connection...
This can be done with Fiddler In the AutoResponder tab, tick "Enabled automatic responses" and "Unmatched requests passthrough" Add a rule... Match: regex:(?i)http://int.company.com/site/localspoof/(.*) Respond with: http://127.0.0.1:8008/localspoof/$1 This will capture all traffic under subfolder on a site, and transparently map a local server / folder to any resources specified in the...
I found the answer. Not "reverse" proxy but forward proxy is the answer in this case.
apache,mod-rewrite,reverse-proxy,httpd.conf,mod-proxy
Well, in fact it is quiet easy... Having such folders configured: /var/www/static/ |- css/* |- js/* \ medias/* The following httpd configuration will redirect static/* to the /var/www and the rest will be proxied # first rewrite for statics RewriteEngine On RewriteRule ^/context/static/(.+)$ /static/$1 # then proxy remaining... ProxyPass /context...
nginx,elasticsearch,reverse-proxy,elasticsearch-plugin
I was able to work out two solutions to get around the permission, so I'll present them both. One thing to know about my nginx set-up is that I did not use sudo to install it. I unarchived the tar file, configured, and make installed it, so it was residing...
networking,nginx,proxy,reverse-proxy
You would need to run your own DNS server on the intranet with rules for these names. For implementing the server, you may wish to look into Zonefiles with BIND. How to configure machines on your network to use this DNS server is a matter of how network settings for...
python,proxy,wsgi,reverse-proxy
See the Paste proxy middleware. http://pythonpaste.org/wsgiproxy/ ...
python,nginx,proxy,flask,reverse-proxy
Yes, it counts. nginx is written in C and handles all what shall web server handle for your static files. Apart from speed, you will also get lower load on your Python code. Regarding caching - if you like, nginx can serve for your app also as a cache, see...
apache,ssl,certificate,reverse-proxy,mod-ssl
You are on the right track. SSLCertificateFile server.crt >> Your public certificate SSLCertificateKeyFile server.key >> Your private key SSLCertificateChainFile chain.crt >> List of intermediate certificates; in your case, only one - GoDaddy intermediate CA Check your server configuration with a tool like SSL Labs to determine if you are sending...
ruby-on-rails,wordpress,ssl,heroku,reverse-proxy
I eventually resolved this by getting an SSL certificate for the blog (myappblog.com) as well. Once the blog site and the app site were both secure, this wasn't a problem anymore.
apache,mod-rewrite,reverse-proxy,mod-proxy,mod-ssl
Turns out I had improperly diagnosed this. The backend webserver (in this case, it happened to be rails) was actually specifying the http URL explicitly. This is because it was using the incoming request parameters to build its redirection URL. So, since ProxyPreserveHost was enabled, it was getting the host...
apache,mod-rewrite,reverse-proxy,mod-proxy,mod-headers
You can use mod_headers to remove the duplicate header. See their official docs for information on how to enable it. Then you can add a line like this to your configuration file so that the first part of header disappears: RequestHeader edit Authorization "^BASIC\ abc123\\,\ " "" Let me know...
ajax,iis-7.5,http-post,reverse-proxy
The issue was that there was one module entry which was causing some issues, removed that module and everything was working fine. Regrads, Tarun...
For those who find this question and have the same problem .... I switched to nginx and had it running in 15 minutes. Not sure why lighttpd wasn't able to do the same.
windows,apache,proxy,reverse-proxy,mod-proxy
A quick search reveals that something like this: http://superuser.com/questions/704781/apache-mod-proxy-with-automatic-authentication Should allow you to perform the authentication and add it into the header....
apache,express,http-headers,relative-path,reverse-proxy
Using a plain Header will set a response header. You need to add a request header so your downstream app can access it, therefore you need to use the RequestHeader directive like so: RequestHeader set X-Script-Name "/app"...
spring-mvc,tomcat,nginx,spring-security,reverse-proxy
You missed proxy_set_header Host $host; And actually, I don't see any reason to have X-Forwarded-Host and X-Forwarded-Server headers....
apache,websocket,reverse-proxy
Yes, its possible. We have used Apache to reverse proxy websocket. Make sure that your Apache is built with the module: mod_proxy_wstunnel. Which is supported after Version 2.4.5. Then you just need to find out which port for your websocket is using. If it is also using 3050, then you...
nginx,proxy,webserver,reverse-proxy
Based on your updated comments; if the upstream backend sends the referer header, you could do something like this: location ~* ^/(css|js)/.+\.(css|js)$ { #checking if referer is from app1 if ($http_referer ~ "^.*/app1"){ return 417; } #checking if referer is from app2 if ($http_referer ~ "^.*/app2"){ return 418; } }...
The config below should do a similar redirect as you mentioned without entering a loop: upstream my_upstream_server { server 10.20.30.40:12345; } server { server_name ssl-enabled.example.com; listen 443 ssl; ssl_certificate /etc/ssl/server.crt; ssl_certificate_key /etc/ssl/server.key; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers HIGH:!aNULL:!MD5; location /upstream { proxy_pass http://my_upstream_server/; proxy_redirect off; proxy_set_header Host $host; proxy_set_header X-Real-IP...
javascript,node.js,express,proxy,reverse-proxy
Apparently the internal network limitations constricted external calls. var request = require('request').defaults({'proxy': 'http://myproxy:1234/'}); solved the problem...
You should take a look at this answer about using /etc/hosts as your resolver: Using /etc/hosts as resolver for url rewriting Basically, your dns or resolver does not use /etc/hosts to resolve names during a lookup, but you can work around this by installing dnsmasq and using 127.0.0.1 as your...
apache,redirect,dns,apache2,reverse-proxy
mod_proxy needs to be enabled before working >_< Once I enabled it my config worked as expected. a2enmod proxy_http ...
performance,reverse-proxy,haproxy,f5
You may check this list for alternative Load Balancing tools. Cloud providers (Amazon, Rackspace, Google Compute Engine, Softlayer etc), but also some dedicated/VM server providers, usually offer some cheap Load-Balancing solutions as a service. Haproxy currently seems to be one of the most popular opensource software for Reverse-Proxy, Load-Balancing and...
apache,proxy,reverse-proxy,owncloud
I was able to use Apache reverse proxy module. For me, using ProxyPassReverse directly was not able to route back to the original route. By using ProxyPass, ProxyHTMLURLMap and creation of link locations it did work out well....
javascript,node.js,proxy,reverse-proxy
First of all, this is a forward proxy, second, here is a working code of what you want, modify it as you please call this from http://127.0.0.1:5432/yahoo.com var request = require('request'); var express = require('express')(); var session = require('cookie-session'); express.set('trust proxy', 1) express.use(session({ keys: ['key1', 'key2'] })) express.use(function(req,res,next) { if(req.url.indexOf('.com')...
There was indeed a bug in my proxy code. I am not exactly sure what caused the symptoms described above, but fixing the code so that it didn't re-authenticate every time fixed my issue.
java,http-headers,reverse-proxy,restlet,restlet-2.0
Thanks to Arjohn (see related discussion in Restlet mailing list) the solution was found: We've updated from restlet 2.1.4 to 2.2.0 now and to our surprise this fixed the Redirector problems. In fact, Redirector works perfectly out-of-the-box, including the digest authentication. No subclassing required. So probably this was a bug...
ssl,encryption,nginx,reverse-proxy
How 7) happens ? I think that it cannot be reencrypted randomly, right ? it has to get a key in a cache or something, no ? 7 happens by encrypting the response data with the session key that was negotiated during the SSL handshake....
Using the Location Directive is the preferred method to use. The alternative syntax of Proxypass like this ProxyPass /app http://10.0.0.10/blah can have performance impact when there are many. However depending on your need the alternative syntax might be better. From the documentation: The following alternative syntax is possible, however it...
A reverse proxy, when used for load-balancing, will proxy all traffic to the pool of origin servers. This means that the client TCP connection terminates at the LB (the reverse proxy), and the LB initiates a new TCP connection to one of the origin nodes on behalf of the client....
nginx,reverse-proxy,connections
OK, I didn't like reading manuals, but to answer my question: nginx close upstream connection after request solved it. So what was the problem: I've configured upstream to use keepalive but Nginx doc suggests to set following options in proxy location: proxy_http_version 1.1; proxy_set_header Connection ""; That's it and thousand...
javascript,nginx,single-page-application,reverse-proxy,mean-stack
In this case, a static resource refers to one that is not generated with code on the fly, meaning that its contents won't change from request to request. Images, JavaScript, CSS, etc., are all candidates for this. Basically, you set a large cache time for these resources, and your Nginx...