LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 01-21-2003, 04:07 AM   #1
shegde
LQ Newbie
 
Registered: Dec 2002
Location: India
Posts: 3

Rep: Reputation: 0
HTTP to HTTPS


I have a requirement to place a reverse proxy server and convert all internet traffic HTTP requests to HTTPS and forward it to the Web server in the DMZ. Is this possible to do using proxy servers available in the market? Who is the vendor and any issues in deploying such a configuration?

Thanks
Sadashiv
 
Old 01-21-2003, 08:53 AM   #2
trickykid
Guru
 
Registered: Jan 2001
Posts: 24,133

Rep: Reputation: 197Reputation: 197
I don't know about proxy servers that are out on the market but couldn't you build your own proxy server with say, eh, your favorite Linux distro to do this job ? Might be less hassle in try to find a prebuilt one that could do this for you.

Just a thought.
 
Old 01-21-2003, 12:25 PM   #3
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,944
Blog Entries: 54

Rep: Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731
Only things come to mind right now are DeleGate and Apache's mod_ssl+mod_proxy. It think it's best you research issues yourself, I'm not familiar with your requirements.
 
Old 01-21-2003, 06:09 PM   #4
aigartua
Member
 
Registered: Dec 2002
Location: Xalapa, Ver. México
Distribution: Red Hat
Posts: 108

Rep: Reputation: 15
You can bind the https service at port 80. Now all the request wana be https, good look
 
Old 01-21-2003, 11:30 PM   #5
Robert0380
Guru
 
Registered: Apr 2002
Location: Atlanta
Distribution: Gentoo
Posts: 1,280

Rep: Reputation: 47
aigartua, that sounds like a good idea, but doesnt ssl slow down the process, so doing that on pages taht might not need it would be wasteful, maybe not too noticeable but im not sure, a better solution would be to forward on the ages requred to https:// instead of all requests. but the proxy server part im not sure about either
 
Old 01-22-2003, 06:02 AM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,944
Blog Entries: 54

Rep: Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731Reputation: 2731
I think he means conversion, like this:
Code:
CLIENT      |FW |     DMZ        |
[http] <--> [SSLizer] <--> [https]
            |   |                |
            |   |                |
 
Old 01-22-2003, 04:03 PM   #7
aigartua
Member
 
Registered: Dec 2002
Location: Xalapa, Ver. México
Distribution: Red Hat
Posts: 108

Rep: Reputation: 15
ok, you can make nat from you external ethernet port 80 to dmz ethernet ip_server_http:442
 
Old 01-22-2003, 04:30 PM   #8
aigartua
Member
 
Registered: Dec 2002
Location: Xalapa, Ver. México
Distribution: Red Hat
Posts: 108

Rep: Reputation: 15
sorry, the https port is 443
 
Old 01-31-2003, 04:29 AM   #9
shegde
LQ Newbie
 
Registered: Dec 2002
Location: India
Posts: 3

Original Poster
Rep: Reputation: 0
Finally, I arrived to this solution.

Internet -->DMZ1-->DMZ2-->DMZ3-->Intranet

Reverse proxy in DMZ1 will route the HTTP traffic to DMZ2 and HTTPS traffic to DMZ3. This way separated the public access pages from the secure information.

Thanks for all your suggestions.
Sadashiv
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
https works, but not http squeaks_27 Linux - Networking 1 05-31-2005 08:41 PM
http and https wennie Linux - Software 1 04-01-2005 11:47 AM
Got http, now I need to run https lothario Linux - Software 2 01-08-2005 02:30 PM
HTTP versus HTTPS Linh Linux - Security 5 09-18-2003 11:13 AM
https or http? antken Programming 3 10-30-2002 05:06 PM


All times are GMT -5. The time now is 02:46 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration