FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Red Hat Linux

 
 
LinkBack Thread Tools
 
Old 09-11-2008, 07:32 PM
Paulo Cesar Naves Mota
 
Default Apache+SSL+IIS

Hello everybody,

I am trying to implement in my corporation, Apache+SSL in front-of
I.I.S that be in the intranet, when I write on browser
https://webmail.corporation.com.br, show me 2 certificates , the first
is my apache and second is IIS. I don't know if it is correct? In below
one piece of my ssl.conf.

<VirtualHost _default_:443>

# General setup for the virtual host, inherited from global configuration
DocumentRoot "/var/www/html"
ServerName webmail.cetelem.com.br:443

RewriteEngine On
#RewriteMap damnpercent prg:/usr/local/bin/percent_rewrite
RewriteCond $1 ^/.*\%.*$
RewriteRule (/.*) ${damnpercent:$1} [P]

Redirect / http://spos13252.cetelembr.cnet.intra/exchange

RewriteCond $1 ^/exchange/.*\%.*$
RewriteRule (/exchange/.*) ${damnpercent:$1} [P]

RequestHeader set Front-End-Https "On"

ProxyPass / http://fqdn_machine/exchange/
ProxyPassReverse / http://fqdn_machine/exchange/
ProxyPass /exchange http://fqdn_machine/exchange/
ProxyPassReverse /exchange http://fqdn_machine/exchange/
ProxyPass /exchweb http://fqdn_machine/exchweb/
ProxyPassReverse /exchweb http://fqdn_machine/exchweb/
ProxyPass /public http://fqdn_machine/public/
ProxyPassReverse /public http://fqdn_machine/public/
ProxyPass /iisadmpwd http://fqdn_machine/iisadmpwd/
ProxyPassReverse /iisadmpwd http://fqdn_machine/iisadmpwd/
CacheDisable *
Redirect Permanent / https://webmail.mycorporation.com.br/
AllowCONNECT 443



PS.: I use Red Hat Enterprise 4 and I'm sorry by English poor.

Best Regards




--

Att,

Paulo César Naves Mota
Administrador de Redes
CETELEM SERVICOS DO BRASIL LTDA - SP
Av. Paulista, 1106 - 11º Andar
01310-914 - Bela Vista - São Paulo -SP
Fone:+55 11 3377-0304
e-mail: paulo.mota@cetelem.com.br
°v°
/(_)
^ ^
LinuxUser: 412359


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-11-2008, 07:50 PM
"Florez, Nestor"
 
Default Apache+SSL+IIS

Just wondering, Why are you using both IIS and Apache?

-----Original Message-----
From: redhat-list-bounces@redhat.com [mailto:redhat-list-bounces@redhat.com]On Behalf Of Paulo Cesar Naves Mota
Sent: Thursday, September 11, 2008 12:33 PM
To: redhat-list@redhat.com
Subject: Apache+SSL+IIS

Hello everybody,

I am trying to implement in my corporation, Apache+SSL in front-of
I.I.S that be in the intranet, when I write on browser
https://webmail.corporation.com.br, show me 2 certificates , the first
is my apache and second is IIS. I don't know if it is correct? In below
one piece of my ssl.conf.

<VirtualHost _default_:443>

# General setup for the virtual host, inherited from global configuration
DocumentRoot "/var/www/html"
ServerName webmail.cetelem.com.br:443

RewriteEngine On
#RewriteMap damnpercent prg:/usr/local/bin/percent_rewrite
RewriteCond $1 ^/.*\%.*$
RewriteRule (/.*) ${damnpercent:$1} [P]

Redirect / http://spos13252.cetelembr.cnet.intra/exchange

RewriteCond $1 ^/exchange/.*\%.*$
RewriteRule (/exchange/.*) ${damnpercent:$1} [P]

RequestHeader set Front-End-Https "On"

ProxyPass / http://fqdn_machine/exchange/
ProxyPassReverse / http://fqdn_machine/exchange/
ProxyPass /exchange http://fqdn_machine/exchange/
ProxyPassReverse /exchange http://fqdn_machine/exchange/
ProxyPass /exchweb http://fqdn_machine/exchweb/
ProxyPassReverse /exchweb http://fqdn_machine/exchweb/
ProxyPass /public http://fqdn_machine/public/
ProxyPassReverse /public http://fqdn_machine/public/
ProxyPass /iisadmpwd http://fqdn_machine/iisadmpwd/
ProxyPassReverse /iisadmpwd http://fqdn_machine/iisadmpwd/
CacheDisable *
Redirect Permanent / https://webmail.mycorporation.com.br/
AllowCONNECT 443



PS.: I use Red Hat Enterprise 4 and I'm sorry by English poor.

Best Regards




--

Att,

Paulo César Naves Mota
Administrador de Redes
CETELEM SERVICOS DO BRASIL LTDA - SP
Av. Paulista, 1106 - 11º Andar
01310-914 - Bela Vista - São Paulo -SP
Fone:+55 11 3377-0304
e-mail: paulo.mota@cetelem.com.br
°v°
/(_)
^ ^
LinuxUser: 412359


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-11-2008, 08:04 PM
Paulo Cesar Naves Mota
 
Default Apache+SSL+IIS

Hello Florez,

Because the all functionallity of "exchange server and web" that I need
in my corporation.

Thanks!



Florez, Nestor wrote:

Just wondering, Why are you using both IIS and Apache?


--



Att,



Paulo César Naves Mota

Administrador de Redes

CETELEM SERVICOS DO BRASIL LTDA - SP

Av. Paulista, 1106 - 11º Andar

01310-914 - Bela Vista - São Paulo -SP

Fone:+55 11 3377-0304

e-mail: paulo.mota@cetelem.com.br <mailtoaulo.mota@cetelem.com.br>

°v°

/(_)

^ ^

LinuxUser: 412359

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-11-2008, 08:32 PM
mark
 
Default Apache+SSL+IIS

Paulo Cesar Naves Mota wrote:
> Florez, Nestor wrote:
>
> Just wondering, Why are you using both IIS and Apache?
>
> Because the all functionallity of "exchange server and web" that I need
> in my corporation.

And I'd assume that he doesn't run the company, nor IT, and is doing what he
has to do for corporate.

mark "as do we all"

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-11-2008, 08:59 PM
Paulo Cesar Naves Mota
 
Default Apache+SSL+IIS

I am sorry Mark, but I don't understand your answear.

I am work with IT. What the question?

Thanks!


mark wrote:
>
> Paulo Cesar Naves Mota wrote:
> > Florez, Nestor wrote:
> >
> > Just wondering, Why are you using both IIS and Apache?
> >
> > Because the all functionallity of "exchange server and web" that
> I need
> > in my corporation.
>
> And I'd assume that he doesn't run the company, nor IT, and is doing
> what he
> has to do for corporate.
>
> mark "as do we all"
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>


--

Att,

Paulo César Naves Mota
Administrador de Redes
CETELEM SERVICOS DO BRASIL LTDA - SP
Av. Paulista, 1106 - 11º Andar
01310-914 - Bela Vista - São Paulo -SP
Fone:+55 11 3377-0304
e-mail: paulo.mota@cetelem.com.br
°v°
/(_)
^ ^
LinuxUser: 412359


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-11-2008, 09:04 PM
mark
 
Default Apache+SSL+IIS

Paulo Cesar Naves Mota wrote:
> mark wrote:
>> Paulo Cesar Naves Mota wrote:
>>> Florez, Nestor wrote:
>>>
>>> Just wondering, Why are you using both IIS and Apache?
>>>
>>> Because the all functionallity of "exchange server and web" that
>> I need in my corporation.

>> And I'd assume that he doesn't run the company, nor IT, and is doing
>> what he has to do for corporate.
> I am sorry Mark, but I don't understand your answear.
>
> I am work with IT. What the question?

I was responding to Nestor, saying that I doubted that you were the head of IT
where you were, just an admin, and that you had no choice in the matter of why
Exchange needed to be used, that such a decision had been made by management,
and that you were just trying to do what they wanted.

mark

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-12-2008, 01:07 AM
"Anthony DeStefano"
 
Default Apache+SSL+IIS

On Thu, Sep 11, 2008 at 3:32 PM, Paulo Cesar Naves Mota
<Paulo.Mota@cetelem.com.br> wrote:
> Hello everybody,
>
> I am trying to implement in my corporation, Apache+SSL in front-of
> I.I.S that be in the intranet, when I write on browser
> https://webmail.corporation.com.br, show me 2 certificates , the first
> is my apache and second is IIS. I don't know if it is correct? In below
> one piece of my ssl.conf.
>
> <VirtualHost _default_:443>
>
> # General setup for the virtual host, inherited from global configuration
> DocumentRoot "/var/www/html"
> ServerName webmail.cetelem.com.br:443
>
> RewriteEngine On
> #RewriteMap damnpercent prg:/usr/local/bin/percent_rewrite
> RewriteCond $1 ^/.*\%.*$
> RewriteRule (/.*) ${damnpercent:$1} [P]
>
> Redirect / http://spos13252.cetelembr.cnet.intra/exchange
>
> RewriteCond $1 ^/exchange/.*\%.*$
> RewriteRule (/exchange/.*) ${damnpercent:$1} [P]
>
> RequestHeader set Front-End-Https "On"
>
> ProxyPass / http://fqdn_machine/exchange/
> ProxyPassReverse / http://fqdn_machine/exchange/
> ProxyPass /exchange http://fqdn_machine/exchange/
> ProxyPassReverse /exchange http://fqdn_machine/exchange/
> ProxyPass /exchweb http://fqdn_machine/exchweb/
> ProxyPassReverse /exchweb http://fqdn_machine/exchweb/
> ProxyPass /public http://fqdn_machine/public/
> ProxyPassReverse /public http://fqdn_machine/public/
> ProxyPass /iisadmpwd http://fqdn_machine/iisadmpwd/
> ProxyPassReverse /iisadmpwd http://fqdn_machine/iisadmpwd/
> CacheDisable *
> Redirect Permanent / https://webmail.mycorporation.com.br/
> AllowCONNECT 443

All you really need is the proxy and not the rewrite or redirect. You
can find more information at
http://gregsidberry.com/2007/08/31/how-to-get-apache-proxypass-working-with-ssl/

--Anthony

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-12-2008, 01:07 AM
"Anthony DeStefano"
 
Default Apache+SSL+IIS

On Thu, Sep 11, 2008 at 3:32 PM, Paulo Cesar Naves Mota
<Paulo.Mota@cetelem.com.br> wrote:
> Hello everybody,
>
> I am trying to implement in my corporation, Apache+SSL in front-of
> I.I.S that be in the intranet, when I write on browser
> https://webmail.corporation.com.br, show me 2 certificates , the first
> is my apache and second is IIS. I don't know if it is correct? In below
> one piece of my ssl.conf.
>
> <VirtualHost _default_:443>
>
> # General setup for the virtual host, inherited from global configuration
> DocumentRoot "/var/www/html"
> ServerName webmail.cetelem.com.br:443
>
> RewriteEngine On
> #RewriteMap damnpercent prg:/usr/local/bin/percent_rewrite
> RewriteCond $1 ^/.*\%.*$
> RewriteRule (/.*) ${damnpercent:$1} [P]
>
> Redirect / http://spos13252.cetelembr.cnet.intra/exchange
>
> RewriteCond $1 ^/exchange/.*\%.*$
> RewriteRule (/exchange/.*) ${damnpercent:$1} [P]
>
> RequestHeader set Front-End-Https "On"
>
> ProxyPass / http://fqdn_machine/exchange/
> ProxyPassReverse / http://fqdn_machine/exchange/
> ProxyPass /exchange http://fqdn_machine/exchange/
> ProxyPassReverse /exchange http://fqdn_machine/exchange/
> ProxyPass /exchweb http://fqdn_machine/exchweb/
> ProxyPassReverse /exchweb http://fqdn_machine/exchweb/
> ProxyPass /public http://fqdn_machine/public/
> ProxyPassReverse /public http://fqdn_machine/public/
> ProxyPass /iisadmpwd http://fqdn_machine/iisadmpwd/
> ProxyPassReverse /iisadmpwd http://fqdn_machine/iisadmpwd/
> CacheDisable *
> Redirect Permanent / https://webmail.mycorporation.com.br/
> AllowCONNECT 443

All you really need is the proxy and not the rewrite or redirect. You
can find more information at
http://gregsidberry.com/2007/08/31/how-to-get-apache-proxypass-working-with-ssl/

--Anthony

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 
Old 09-12-2008, 12:20 PM
Paulo Cesar Naves Mota
 
Default Apache+SSL+IIS

Hello Anthony,

Thanks for your help, but my question is why IIS in other
machine only works when we using Certificated on he and on apache of
first machine?

Anthony DeStefano wrote:
>
> All you really need is the proxy and not the rewrite or redirect. You
> can find more information at
>
http://gregsidberry.com/2007/08/31/how-to-get-apache-proxypass-working-with-
ssl/
>
>
> --Anthony
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>


--

Att,

Paulo César Naves Mota
Administrador de Redes
CETELEM SERVICOS DO BRASIL LTDA - SP
Av. Paulista, 1106 - 11º Andar
01310-914 - Bela Vista - São Paulo -SP
Fone:+55 11 3377-0304
e-mail: paulo.mota@cetelem.com.br
°v°
/(_)
^ ^
LinuxUser: 412359


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
 

Thread Tools




All times are GMT. The time now is 04:43 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org