如何解决Apache 转发代理多个位置,多重认证作为基于位置指令的身份验证
目标 os 创建具有多个目的地的转发代理,并具有基于位置指令的多个证书。我一直在阅读一些配置,我想知道配置是否正确
这是基本配置:
Listen 0.0.0.0:8080
SSLProxyMachineCertificateChainFile /etc/httpd/certs/client-CAcerts.pem
SSLProxyMachineCertificateFile /etc/httpd/certs/client-certkey.pem
<VirtualHost *:8080>
ServerName someservername.example.com
SSLProxyEngine On
SSLProxyCheckPeerName on
SSLProxyCheckPeerCN on
SSLProtocol TLSv1.2
SSLProxyCipherSuite ECDHE-RSA-AES256-GCM-SHA384:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:ECDHE-RSA-AES256-GCM-SHA384
ErrorLog /var/log/httpd/server-8080_error.log
CustomLog /var/log/httpd/server-8080_access.log combined
ProxyRequests Off
ProxyPreserveHost Off
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
以及基于位置的配置指令
<Location /a-company.com/>
<proxy https://a-company.com>
ProxySet timeout=301 connectiontimeout=31
SSLProxyMachineCertificateFile "/etc/apache/certs/a-company.pem"
</proxy>
</Location>
<Location /b-company.com/>
<proxy https://a-company.com>
ProxySet timeout=301 connectiontimeout=31
SSLProxyMachineCertificateFile "/etc/apache/certs/b-company.pem"
</proxy>
</Location>
或者位置配置应该是这样的:
<Location /a-company.com/>
<proxy https://a-company.com>
ProxyPass https://a-company.com:443/ timeout=301 connectiontimeout=31
ProxyPassReverse https://b-company.com:443/
SSLProxyMachineCertificateFile "/etc/apache/certs/a-company.pem"
</proxy>
</Location>
Any help is very much appreciated.
<Location /b-company.com/>
<proxy https://b-company.com>
ProxyPass https://b-company.com:443/ timeout=301 connectiontimeout=31
ProxyPassReverse https://b-company.com:443/
SSLProxyMachineCertificateFile "/etc/apache/certs/b-company.pem"
</proxy>
</Location>
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
