Comments on: Running a Reverse Proxy in Apache

By: Mauricio Matias

Mauricio Matias — Wed, 11 Mar 2009 14:35:26 +0000

It is hard to read it :)

By: pradyumna

pradyumna — Mon, 19 Jan 2009 16:06:28 +0000

Hi, I want an architecture based on the following scenario.

I will have a server that will play a role of a web server/reverse proxy.
This proxy server will be placed in my DMZ
My applications will be running on the MZ.
When some external user will access they have to use _https_ where as internal users should access by _http_
The reverse proxy must be able to provide "local" websites (PHP/HTML etc )

Please can someone help me in designing the architecture and how i will do it. /Pradyumna

By: Chris

Chris — Tue, 23 Oct 2007 21:12:29 +0000

Could you possibly post the “simplified” example that you mentioned if vhosts were used?

We use virtual hosts extensively, and I’m curious as to how this would be simplified…

Thanks, this is a great read!

By: Des

Des — Mon, 17 Sep 2007 00:12:30 +0000

If backend server returns 302 redirect response can this be “trapped” by proxy and redirected internally without sending response back to client?

By: dumbo

dumbo — Thu, 28 Jun 2007 06:00:30 +0000

Hi,
I have slightly different scenario then the reverse proxy examples given.i have to redirect the incoming requests (http:/)to secured site (https://) and get the data back.
Also there is user authentication.
how can that be acompished in reverse proxy.

By: Cd-MaN

Cd-MaN — Thu, 11 Jan 2007 06:51:11 +0000

Hello. I have an issue with mod_proxy I blogged about (http://hype-free.blogspot.com/2006/09/apache-and-modproxy.html). Basically the scenario is the following:
-one internal server with CentOS running an old(er) version of Apache (some 2.0.x) with mod proxy
-the target server out on the web with Windows and a new Apache 2.2
-connections from the proxy to the target server are made through SSL for security reasons
-if keep-alive connections are enabled at every 2-3 requests the proxy says something similar to: “I received an invalid response from an upstream server”. With keep-alive connections disabled everything works fine, but the performance penalty is big, because the encryption has to be renegotiated for every query. Any ideas what could be the problem? I tried to google it by came up with no useful info.

By: LonerVamp

LonerVamp — Wed, 03 Jan 2007 21:14:10 +0000

This is just FYI. The article says:

“At the time of writing, the reason most commonly cited for not upgrading is difficulties running PHP on Apache 2. I cannot speak from personal experience, but several well-informed sources tell me the difficulty lies with non-thread-safe code in PHP, and that it works well with Apache 2 if it is built with the non-threaded Prefork MPM.”

This was true in Ocftober 2006 when this was updated, but is no longer the issue with the latest Apache and PHP installs.