Reverse proxy of https traffic
2 posts
• Page 1 of 1
- petr.spiller
-
- Posts: 1
- Joined: 18 Dec 2012, 06:16
Reverse proxy of https traffic
Hi there,
we are running outside world server proxying all the traffic to the internal server. When using http all is good. When using https something goes wrong.
Is there any trick? The connection on the target server is dropped right after the initial TLS handshake. Both the server certificates - target and proxying IIS - are valid. I have been playing with Wireshark for days, however I'm not able to decipher the encrypted handshake message.
There are two scenarios (proxying server only accepts https request)
1) using RewriteProxy ^(.+)$ h_ttp://tisweb.ans.cz/$1 [NC,CR][/color] - data is passed as http request to internal server - OK
2) using RewriteProxy ^(.+)$ h_ttps://tisweb.ans.cz/$1 [NC,CR][/color] - data is passed as https request to internal server - FAIL
Any idea?
# Helicon ISAPI_Rewrite configuration file
# Version 3.1.0.94
# Registration info
RegistrationName= ANS CR
RegistrationCode= ****
RewriteEngine on
RewriteBase /
RewriteProxy ^(.+)$ https://tisweb.ans.cz/$1 [NC,CR]
we are running outside world server proxying all the traffic to the internal server. When using http all is good. When using https something goes wrong.
Is there any trick? The connection on the target server is dropped right after the initial TLS handshake. Both the server certificates - target and proxying IIS - are valid. I have been playing with Wireshark for days, however I'm not able to decipher the encrypted handshake message.
There are two scenarios (proxying server only accepts https request)
1) using RewriteProxy ^(.+)$ h_ttp://tisweb.ans.cz/$1 [NC,CR][/color] - data is passed as http request to internal server - OK
2) using RewriteProxy ^(.+)$ h_ttps://tisweb.ans.cz/$1 [NC,CR][/color] - data is passed as https request to internal server - FAIL
Any idea?
# Helicon ISAPI_Rewrite configuration file
# Version 3.1.0.94
# Registration info
RegistrationName= ANS CR
RegistrationCode= ****
RewriteEngine on
RewriteBase /
RewriteProxy ^(.+)$ https://tisweb.ans.cz/$1 [NC,CR]
Re: Reverse proxy of https traffic
Hello,
Generally, what is needed is on the server with ISAPI_Rewrite installed open Internet Explorer, go to back-end and confirm the certificate.
If it doesn't work, give the specific error you get.
Generally, what is needed is on the server with ISAPI_Rewrite installed open Internet Explorer, go to back-end and confirm the certificate.
If it doesn't work, give the specific error you get.
2 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 39 guests