Hi
We run CommitCRM web server (nonSSL) on default port (4961) and I am trying to add Apache reverse proxy to allow secure access to CommitCRM for clients via webserver.
Main reasons for it:
1. Secure the traffic.
2. don't expose CommitCRM server (running on Windows) to the internet.
As you can imagine I failed with the hask.
with my current setup it keeps the server name but changes port number to 4961. Not sure if this is something that configured wrongly on Apache or CommitCRM Web App overwrites it.
I just wonder if anyone tried it and been more successful or anyone can help with it.
my setup is:
CommitCRM server
http://192.168.1.6:4961/
Proxy server
CentOS release 6.8 (Final)
Apache/2.2.15
Config file
<VirtualHost *:443>
ServerName myserver.co.uk
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /etc/httpd/ssl/commit/2_myserver.uk.crt
SSLCertificateKeyFile /etc/httpd/ssl/commit/myserver.co.uk.key
SSLCertificateChainFile /etc/httpd/ssl/commit/1_root_bundle.crt
ProxyRequests off
ProxyPreserveHost on
SSLProxyEngine on
Loglevel info
ErrorLog logs/myserver.co.uk_error.log
TransferLog logs/myserver.co.uk_transfer.log
ProxyPass / http://192.168.1.6:4961/
ProxyPassReverse / http://192.168.1.6:4961/
Header edit Location ^http://192.168.1.6:4961/ https://myserver.co.uk/
</Virtualhost>
Regards
Artak
We run CommitCRM web server (nonSSL) on default port (4961) and I am trying to add Apache reverse proxy to allow secure access to CommitCRM for clients via webserver.
Main reasons for it:
1. Secure the traffic.
2. don't expose CommitCRM server (running on Windows) to the internet.
As you can imagine I failed with the hask.
with my current setup it keeps the server name but changes port number to 4961. Not sure if this is something that configured wrongly on Apache or CommitCRM Web App overwrites it.
I just wonder if anyone tried it and been more successful or anyone can help with it.
my setup is:
CommitCRM server
http://192.168.1.6:4961/
Proxy server
CentOS release 6.8 (Final)
Apache/2.2.15
Config file
<VirtualHost *:443>
ServerName myserver.co.uk
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLCertificateFile /etc/httpd/ssl/commit/2_myserver.uk.crt
SSLCertificateKeyFile /etc/httpd/ssl/commit/myserver.co.uk.key
SSLCertificateChainFile /etc/httpd/ssl/commit/1_root_bundle.crt
ProxyRequests off
ProxyPreserveHost on
SSLProxyEngine on
Loglevel info
ErrorLog logs/myserver.co.uk_error.log
TransferLog logs/myserver.co.uk_transfer.log
ProxyPass / http://192.168.1.6:4961/
ProxyPassReverse / http://192.168.1.6:4961/
Header edit Location ^http://192.168.1.6:4961/ https://myserver.co.uk/
</Virtualhost>
Regards
Artak
Comment