Sun One 6.1 reverse proxy with multiple certs

Similar Messages

• IIS Reverse Proxy with URL rewrite.

  Hi all, hoping to leverage the wealth of knowledge contained here.
  Any assistance would be very welcome.
  I'm having an issue getting a reverse proxy and URL rewrite working in IIS 7.0.
  I need to redirect all requests with a specific virtual directory suffix only.
  ie; https://domain.test.com/outbound/Content/query_etc
  With /Outbound/ being the trigger.
  This should be redirected to http://10.10.10.10/inbound/Content/query_etc
  While at the same time, requests without the /outbound/ suffix should be handled locally.
  I have configured the reverse proxy as described in a few articles, and have had no luck.
  Here's a snippet from my (sanitized) web.config at the site level.
  <rewrite>
  <outboundRules>
  <rule name="ReverseProxyOutboundRule1" preCondition="ResponseIsHtml1">
  <match filterByTags="A" pattern="^http(s)?://10.10.10.10/inbound/(.*)" />
  <action type="Rewrite" value="https://domain.test.com/outbound/{R:2}" />
  </rule>
  <preConditions>
  <preCondition name="ResponseIsHtml1">
  <add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />
  </preCondition>
  </preConditions>
  </outboundRules>
  <rules>
  <rule name="ReverseProxyInboundRule1" stopProcessing="true">
  <match url="^outbound/(.*)" />
  <action type="Rewrite" url="http://10.10.10.10/inbound/{R:1}" appendQueryString="true" logRewrittenUrl="false" />
  </rule>
  </rules>
  </rewrite>
  To me, this looks correct, yet it doesn't work.
  With this, I get the normal 404 - Error Code 0x80070002, with the text indicating the local directory doesn't exist, so.... not being picked up by the filter for redirection.

  Hi Andrew,
  Looking at your requirements it appears you need Reverse Proxy To Another Site/Server.
  By using URL Rewrite Module together with
  Application Request Routing module you can have IIS 7 act as a
  reverse proxy.
  It seems like URL Rewrite can't re-route the request somewhere else out of the server.
  Even when you rewrite the url the actual connection remains with the server. Hence if your original server doesn't have /inbound/Content/query_etc  it will fail with 404.
  Hosting multiple domain names under a single account using URL Rewrite.
  It’s a common desire to have a single IIS website that handles multiple sites with different domain names.
  References:
  How to create a url alias using IIS URL Rewrite:
  http://blogs.technet.com/b/mspfe/archive/2013/11/27/how-to-create-a-url-alias-using-iis-url-rewrite.aspx
  Reverse Proxy with URL Rewrite v2 and Application Request Routing:
  http://www.iis.net/learn/extensions/url-rewrite-module/reverse-proxy-with-url-rewrite-v2-and-application-request-routing
  Regards,
  Satyajit
  Please“Vote As Helpful”
  if you find my contribution useful or “MarkAs Answer” if it does answer your question. That will encourage me - and others - to take time out to help you.

• Apache Reverse Proxy with Abap Web query

  Hi to all
    We are trying to configure apache 2 to work as a reverse proxy with web abap Netweaver installation.
  From inside the network the web query is fine.
  Running the query with the reverse proxy we have only the html code in the browser. All the scripts and css are not present.
  We checked some messages inside the forum and we have tried a lot of stuff without success.
  We use always linux (Fedora, Ubuntu with xampp or apache only) plus the html module or the publisher from http://apache.webthing.com.
  Our installation is like this the reverse proxy in the dmz and the netweaver to the inside off coarse, and we don't have the same domain name, i don't know if this is important.
  Any help/idea  is valuable.
  Thank you
  Yiannis

  Hi Olivier
  I have seen your solution in other messages but i didn't try it because i was trying to work with the html_proxy module.
  I read the documents you gave me plus some apache tutorials on the rewrite rule.
  In any case i have my installation working now.
  I did some extra changes in my config so now the rules are like that
  ProxyVia On
  ProxyBadHeader IsError
  ProxyRequests Off
  ProxyPreserveHost On
  ProxyPass /sap http://192.168.1.59:8001/sap
  ProxyPassReverse /sap http://192.168.1.59:8001/sap
  RewriteEngine On
  RewriteRule ^/(sap\(.*) http://192.168.1.59:8001/$1 [P,L]
  Thanks again for your help
  Yiannis

• Integration of Sun One Web Server 6.0 with Sun One App Server 7.0

  Is it possible to integrate Sun One Web Server 6.0 with the Sun One App Server 7.0??
  Sun One App Server 7.0 comes with the in-built HTTP listener. But we want to know if there is a way by which we can use the Sun One Web Server 6.0 with the App Server 7.0 and not the in-bulit HTTP listener?

  As suggested by you, I have used Sun ONE Application Server 7's plugin to connect the Sun ONE Web Server 6.0 with Sun ONE Application Server 7 as per the information given in Sun ONE Application Server 7 Administrator's Guide.
  I have added the plugin package to the webserver and added the following into the magnus.conf:
  Init fn="load-modules" shlib="C:/iPlanet/Servers/plugins/passthrough/passthrough.dll" funcs="init-passthrough,auth-passthrough,check-passthrough,service-passthrough" NativeThread="no"
  Init fn="init-passthrough"
  and to the obj.conf
  NameTrans fn="assign-name" from="(/A2P2Test|/A2P2Test/*)" name="passthrough"
  <Object name="passthrough">
  ObjectType fn="force-type" type="magnus-internal/passthrough"
  Service type="magnus-internal/passthrough" fn="service-passthrough" servers="http://<application server http listener>"
  Error reason="Bad Gateway" fn="send-error" uri="$docroot/badgateway.html"
  </Object>
  The webserver starts up without any errors but never forwards any requests what might I be doing wrong?

• CSM-S to Servers... Reverse proxy with authentication?

  Using a CSM-S with a number of web servers behind it, can the CSM-S be configured to act as a reverse proxy for the servers with no other equipment or licenses to buy?

  Reverse proxy with authentication.

• Reverse Proxy with Sun Web Server 7 update 4

  Hi All,
  I've just migrating to Sun Java System Web Server 7.0U4 B12/02/2008 from Sun Java System Web Server 7.0-Technology-Preview-3 B09/13/2006. I've have the two web servers running side by side on separate machines. Both have a VS configured as a reverse proxy pointing to the same apache tomcat web server.
  The Tech Preview 3 server works fine and has been doing since it was installed. However the Update 4 server doesn't. I can access the tomcat app via the U4 server in a browser, but not with the app on my mobile (sync ML). Snooping the traffic show me that the U4 server is sending a different response that the Tech Preview server. I'm thinking it may have to do with Transfer Encoding: chunked. I've looked around the web to see if I can turn this off in the U4 server, as I seem to recall having to do so at some point in my life, though I can't remember when and with what.
  Does anybody have any clues they can throw at me?? Or anybody know what has change in the reverse proxy part of the web server from Tech Preview 3 to U4??
  Both VS reverse proxies are congfigured exactly the same.
  Thanks,
  Stuart.

  well, technology preview is what the name says .. i am surprised that u decided to stick with a technology preview release all these days.. in any case, there should not have any feature change between technology preview build and U4. but , there has been lot of bug fixes - so, unless we know the exact problem - we can't easily narrow down the change between tp3 build with U4 and find out how it is affecting u.
  here is a related article on how to use chunked encoding within web server 7
  http://developers.sun.com/webtier/reference/techart/chunked_req.html
  now, to help you more appropriately, you need to provide us with errors (probably with log level set to finest within server.xml) and let us know with the error reported by web server when it is unable to send those requests to back end tomcat
  you can set log level to finest by running the following command
  /sun/webserver7/bin/wadm set-config-prop -user=admin --config=<hostname> log-level=finest
  /sun/webserver7/bin/wadm deploy-config --user=admin <hostname>
  http://docs.sun.com/app/docs/doc/820-4842/set-config-prop-1?a=view
  (once you have identified the problem, you might want to set log level to info as setting to finest will cause your logs to grow humongous and also hurt performance
  thanks
  sriram

• Sun Web server 7  - Reverse proxy to different

  Hi All,
  I have following scenario:
  I have deploy my application into 2 dedicated weblogic servers, http://host1:7001/myapp and http://host2:7001/myapp. How can I configure the reverse proxy so whenever user enter the URL, webserver will forward different app server like below;
  #1 - http://abc.com >> web server will forward to http://host1:7001/myapp
  #2 - http://abc.com/controller>> web server will forward to http://host2:7001/myapp
  I follow tutorial from this link >> http://blogs.sun.com/amit/entry/setting_up_a_reverse_proxy
  For requirement #1 it work perfectly since i put URI = /myapp and Server URL = http://host1:7001.
  But for #2, it doesnt work since I put the URI=/controller.
  We wanted to be like http://abc.com/controller, so it will forward to second app server which difference application.
  Is it possible? or any other to do like that?
  Thanks!

  Hi Sriram,
  I'm having similar problem with atehac, the only difference is that the web server
  #1 http://domain.com/web1 >> forwarded to http://local-pc1.com:8080/
  #2 http://domain.com/web2 >> forwarded to http://local-pc2.com:8080/
  This is the setting that I've made in <vs>obj.conf :
  NameTrans fn="map" from="/web1" name="reverse-proxy-/web1" to="http:/"
  NameTrans fn="map" from="/" name="reverse-proxy-/web1" to="http:/"
  NameTrans fn="map" from="/web2" name="reverse-proxy-/web2" to="http:/"
  NameTrans fn="map" from="/" name="reverse-proxy-/web2" to="http:/"
  <Object name="reverse-proxy-/web1">
  Route fn="set-origin-server" server="http://local-pc1.com:8080"
  </Object>
  <Object name="reverse-proxy-/web2">
  Route fn="set-origin-server" server="http://local-pc2.com:8080"
  </Object>
  But the problem is local-pc2 won't be able to be accessed, while for local-pc1 will be mapped, but it omit /web1
  So it will be like http://domain.com/web1 at the beginning, but after I press enter it became like http://domain.com
  What I wish is something like http://domain.com/web1 all the way.
  Do you have any idea Sriram?
  Regards,
  Berry

• Reverse Proxy with Firewall on Portal R2

  We are trying to configure Oracle Portal R2 in the reverse proxy mode. We have a Sun Enterprise 250 used in a single machine configuration. (Infr. and Mid tier on same machine)
  The webcache server is listening on server.company.com:7781
  The portal server is listening on server.company.com:7782
  The login server is listening on server.company.com:7780
  The proxy server is listening on www.company.com:81
  According to the Oracle Portal Config Guide we have followed the steps to configure Apache (inclusion of the virtual hosts, etc) and run the ptlasst script to reconfigure portal. While portal responds correctly on www.company.com:81 when i try to log on using the login link I get redirected to server.company.com:7780/...
  Obviously everything seems to be ok from within the LAN since i can see server.company.com, but via internet it doesnt work.
  Here is how we run the script:
  ./ptlasst.csh -mode MIDTIER -host www.company.com -port 81 -chost server.company.com -cport_i 4007 -i custom -c server.company.com:1521:iasdb -pwd xxxxxx
  How can we correct this problem? Do we need to run any other script?

  Hi Suraj,
  The following is the problem.
  We have Sun Enterprise 450 on which Oracle 9iAS Release 2 installed and we are trying to use reverse proxy plugin with iplanet, being installed on windows machine. In the hosts file i have mentioned the following required parameters ie.,
  oproxy.serverlist=ias1
  oproxy.ias1.hostname=http://192.168.1.12 - where Oracle 9iAS is installed
  oproxy.ias1.port=7779
  oproxy.ias1.urlrule=/*
  oproxy.ias1.alias=http://myoracleportal.peesh.com
  oproxy.ias1.stripcontext=false
  and whenever i restart iplanet server after this, here is the following log information.
  06/26/2002 11:57:52 AM: [op_nsapi_plugin.c (296)]: op_init: log_file=e:/iPlanet/https-pncl-hcl028-053.pinnacle.com/logs/oproxy.log server_file=e:/iPlanet/https-pncl-hcl028-053.pinnacle.com/config/servers/oracleProxyPluginInfo.conf
  06/26/2002 11:57:52 AM: [op_uri_map.c (128)]: Into op_uri_map_t::uri_map_alloc
  06/26/2002 11:57:52 AM: [op_uri_map.c (162)]: Into op_uri_map_t::uri_map_open
  06/26/2002 11:57:52 AM: [op_worker_list.c (37)]: op_worker_list_init: propfile=e:/iPlanet/https-pncl-hcl028-053.pinnacle.com/config/servers/oracleProxyPluginInfo.conf p=0x00DC8828 l=0x00DBDA70
  06/26/2002 11:57:52 AM: [op_worker_list.c (45)]: op_worker_list_init: numservers=1
  06/26/2002 11:57:52 AM: [op_worker_list.c (57)]: op_worker_list_init: inside loop, serverlist[0]=ias1
  06/26/2002 11:57:52 AM: [op_worker_list.c (73)]: op_worker_list_init: hostname=http://192.168.1.12
  06/26/2002 11:57:52 AM: [op_worker_list.c (82)]: op_worker_list_init: port=7779
  06/26/2002 11:57:53 AM: [op_uri_map.c (192)]: op_uri_map_t::uri_map_open, rule map size is 0
  06/26/2002 11:57:53 AM: [op_uri_map.c (325)]: op_uri_map_t::uri_map_open, done
  06/26/2002 11:57:53 AM: [op_nsapi_plugin.c (304)]: op_init: exiting
  I have a feeling that "oracle_proxy_nes.dll" maintains all the .conf file information in a stack, whose size is 0.
  pls see interpret this log the way you see.
  thanks in advance,
  gupta

• Reverse Proxy with Coldfusion 8

  Has anyone set up Sun Java Web Server 7 to reverse proxy Coldfusion 8 (also running under SJWS7)? I can reverse proxy static HTML and SHTML content with SJWS7, but not Coldfusion content.
  Thanks in advance for any help, tips, etc.
  --Frank                                                                                                                                                                                                                                                                                                                                                                                                                                                                                               

  Thanks for replying, MV -- I've been out for a while -- sorry for the delay. Below are obj.conf and <vs> obj.conf:
  obj.conf
  # Copyright 2006 Sun Microsystems, Inc. All rights reserved.
  # Use is subject to license terms.
  # You can edit this file, but comments and formatting changes # might be lost when you use the administration GUI or CLI.
  <Object name="default">
  AuthTrans fn="match-browser" browser="*MSIE*" ssl-unclean-shutdown="true"
  NameTrans fn="ntrans-j2ee" name="j2ee"
  NameTrans fn="pfx2dir" from="/mc-icons" dir="/opt/webserver7/lib/icons" name="es-internal"
  PathCheck fn="uri-clean"
  PathCheck fn="check-acl" acl="default"
  PathCheck fn="find-pathinfo"
  PathCheck fn="find-index-j2ee"
  PathCheck fn="find-index" index-names="index.html,home.html,index.jsp"
  ObjectType fn="type-j2ee"
  ObjectType fn="type-by-extension"
  ObjectType fn="force-type" type="text/plain"
  Service method="(GET|HEAD)" type="magnus-internal/directory" fn="index-common"
  Service method="(GET|HEAD|POST)" type="*~magnus-internal/*" fn="send-file"
  Service method="TRACE" fn="service-trace"
  Error fn="error-j2ee"
  AddLog fn="flex-log"
  </Object>
  <Object name="j2ee">
  Service fn="service-j2ee" method="*"
  </Object>
  <Object name="es-internal">
  PathCheck fn="check-acl" acl="es-internal"
  </Object>
  <Object name="cgi">
  ObjectType fn="force-type" type="magnus-internal/cgi"
  Service fn="send-cgi"
  </Object>
  <Object name="send-precompressed">
  PathCheck fn="find-compressed"
  </Object>
  <Object name="compress-on-demand">
  Output fn="insert-filter" filter="http-compression"
  </Object>
  wwwproxy-obj.conf
  # Copyright 2007 Sun Microsystems, Inc. All rights reserved.
  # Use is subject to license terms.
  # You can edit this file, but comments and formatting changes # might be lost when you use the administration GUI or CLI.
  <Object name="default">
  AuthTrans fn="match-browser" browser="*MSIE*" ssl-unclean-shutdown="true"
  NameTrans fn="ntrans-j2ee" name="j2ee"
  NameTrans fn="pfx2dir" from="/mc-icons" dir="/opt/webserver7/lib/icons" name="es-internal"
  NameTrans fn="map" from="/" name="reverse-proxy-/" to="http:/"
  PathCheck fn="uri-clean"
  PathCheck fn="check-acl" acl="default"
  PathCheck fn="find-pathinfo"
  PathCheck fn="find-index-j2ee"
  PathCheck fn="find-index" index-names="index.html,home.html,index.jsp"
  ObjectType fn="type-j2ee"
  ObjectType fn="type-by-extension"
  ObjectType fn="force-type" type="text/plain"
  Service method="(GET|HEAD)" type="magnus-internal/directory" fn="index-common"
  Service method="(GET|HEAD|POST)" type="*~magnus-internal/*" fn="send-file"
  Service method="TRACE" fn="service-trace"
  Error fn="error-j2ee"
  AddLog fn="flex-log"
  </Object>
  <Object name="j2ee">
  Service fn="service-j2ee" method="*"
  </Object>
  <Object name="es-internal">
  PathCheck fn="check-acl" acl="es-internal"
  </Object>
  <Object name="cgi">
  ObjectType fn="force-type" type="magnus-internal/cgi"
  Service fn="send-cgi"
  </Object>
  <Object name="send-precompressed">
  PathCheck fn="find-compressed"
  </Object>
  <Object name="compress-on-demand">
  Output fn="insert-filter" filter="http-compression"
  </Object>
  <Object name="reverse-proxy-/">
  Route fn="set-origin-server" server="www.water.ca.gov"
  </Object>
  <Object ppath="http:*">
  Service fn="proxy-retrieve" method="*"
  </Object>

• Reverse proxy with apache2

  Hi folks,
  I have a huge problem here. I have a apache 2.0.50 on a Linux system that is to act as a reverse proxy for an enterprise portal. I have set up the apache to do reverse proxying and so far I have made first success. I can get to the login page of the portal and I even managed to make it show the images. The problem is, when I try to log on to the  portal I am always send back to the logon page in the very instance. If I enter the wrong logon information I see the authorization failed text, but when I enter correct information I only see the logon page again.
  I will put tyhe relevant part of my httpd.conf to this message and hope someone can point me to the right location or maybe even tell me what I'm doing wrong.
  And ny the way, the portal itself works perfectky when connected directly.
  Kind regards,
     Christian Guenther
  Reverse proxy configuration ############################################
  NameVirtualHost 172.30.210.96
  <VirtualHost 172.30.210.96>
     ServerAdmin [email protected]
     ServerName host.external.de
  SSL is turned off at the moment
     SSLEngine Off
     SSLCertificateFile /etc/apache2/ssl.crt/proxy.cert.cert
     SSLCertificateKeyFile /etc/apache2/ssl.key/proxy.cert.key
  Set up as a proxy for internal SAP systems
     ProxyRequests Off
     ProxyPreserveHost Off
     <Proxy *>
        Order deny,allow
        Allow from all
     </Proxy>
  IRJ
    <Location /irj/>
      ProxyPass http://host.internal.lan:8001/irj/
      ProxyPassReverse http://host.internal.lan:8001/irj/
  rewriting rules for proxy
      RewriteEngine On
      RewriteCond %  \.jsp
      RewriteRule ^(.+) % [P]
      RewriteCond % \.servlet
      RewriteRule ^(.+) %
  Portal
  rewriting rules for proxy
  [P]
    </Location>
    <Location />
      ProxyPass http://host.internal.lan:8001/
      ProxyPassReverse http://host.internal.lan:8001/
      RewriteEngine On
      RewriteCond %  \.jsp
      RewriteRule ^(.+) % [P]
      RewriteCond % \.servlet
      RewriteRule ^(.+) % [P]
    </Location>
  </VirtualHost>

  This is a valid configuration for an Apache Reverse Proxy:
  ThreadsPerChild 250
  MaxRequestsPerChild  0
  ServerRoot /usr/local/apache2
  Listen 443
  #LoadModule dir_module modules/mod_dir.so
  LoadModule rewrite_module modules/mod_rewrite.so
  LoadModule include_module modules/mod_include.so
  #LoadModule autoindex_module modules/mod_autoindex.so
  LoadModule access_module modules/mod_access.so
  #LoadModule auth_module modules/mod_auth.so
  LoadModule log_config_module modules/mod_log_config.so
  #LoadModule mime_module modules/mod_mime.so
  #LoadModule env_module modules/mod_env.so
  #LoadModule headers_module modules/mod_headers.so
  #LoadModule setenvif_module modules/mod_setenvif.so
  LoadModule alias_module modules/mod_alias.so
  LoadModule proxy_module modules/mod_proxy.so
  LoadModule proxy_http_module modules/mod_proxy_http.so
  LoadModule negotiation_module modules/mod_negotiation.so
  LoadModule ssl_module modules/mod_ssl.so
  ServerAdmin [email protected]
  ServerName your.servername.com
  UseCanonicalName Off
  make sure zou include these with valid entries...
  Include conf/log.conf
  Include conf/mime.conf
  Include conf/default.conf
  Include conf/ssl.conf
  BrowserMatch "Mozilla/2" nokeepalive
  BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
  BrowserMatch "RealPlayer 4\.0" force-response-1.0
  BrowserMatch "Java/1\.0" force-response-1.0
  BrowserMatch "JDK/1\.0" force-response-1.0
  BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
  BrowserMatch "MS FrontPage" redirect-carefully
  BrowserMatch "^WebDrive" redirect-carefully
  BrowserMatch "^WebDAVFS/1.[0123]" redirect-carefully
  BrowserMatch "^gnome-vfs" redirect-carefully
  BrowserMatch "^XML Spy" redirect-carefully
  BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully
  this is for the MS IE SSL bug
  BrowserMatch ".MSIE." nokeepalive ssl-unclean-shutdown downgrade-1.0#
  force-response-1.0
  Header add P3P CP="NOI"
  Proxy with caching
  LoadModule cache_module modules/mod_cache.so
  LoadModule disk_cache_module modules/mod_disk_cache.so
  CacheRoot /usr/local/apache2/Cache
  CacheEnable disk /
  CacheDirLevels 5
  CacheDirLength 3
  <VirtualHost *:443>
      ServerName your.servername.com
      ServerAdmin [email protected]
  Set the level of log entries - debug produces A LOT of messages
      LogLevel debug
      ErrorLog logs\error.log
      LogFormat "%h %l %u %t \"%r\" %>s %b" common
      CustomLog logs\access.log common
  NEVER turn this On, it would create a forward proxy   
      ProxyRequests Off
      ProxyPreserveHost On
  it is important that the proxy uses active protocol used in the
  internet section of the request
      RequestHeader set ClientProtocol https
      Header add P3P CP="NOI"
  we need to answer HTTPS requests, so we need an ssl engine   
      SSLEngine On
  and a cipher suite plus certificate
      SSLCipherSuite ALL:!ADH:!EXPORT56:RC4RSA:HIGH:MEDIUM:LOW:SSLv2:EXP:+eNULL
      SSLProtocol all -SSLv2
  of course these entries have to be adopted
      SSLCertificateFile conf/certs/server.crt
      SSLCertificateKeyFile conf/certs/server.key
      SSLOptions +StdEnvVars
  this is for the bloody MS IE - I don't know why, but they seem to
  have trouble learning in redmond
      BrowserMatch ".MSIE." \
           nokeepalive ssl-unclean-shutdown \
           downgrade-1.0 force-response-1.0
      CustomLog logs/ssl_request.log \
            "%t %h %x %x \"%r\" %b"
  below are the proxied hosts - you always need ProxyPass
  AND ProxyPassReverse otherwise it will not work correctly
  ITS
      #ProxyPass /iac/               http://itsserver:8081/iac/
      #ProxyPassReverse /iac/          http://itsserver:8081/iac/
  direct portal connection              this ought to be the IP
      ProxyPass /irj/               http://10.8.1.14:50000/irj/
      ProxyPassReverse /irj/          http://10.8.1.14:50000/irj/
      ProxyPass /logon/               http://10.8.1.14:50000/logon/
      ProxyPassReverse /logon/          http://10.8.1.14:50000/logon/
  Rewrite Rule in case ICM puts session information in URL
  NEVER REALLY HARMS
      RewriteEngine On
      RewriteRule  ^/(sap\(.*) http://10.8.1.14:50000/$1 [P,L]
      #ProxyPass /chooselogin/          http://10.8.9.0:50000/chooselogin/
      #ProxyPassReverse /chooselogin/     http://10.8.9.0:50000/chooselogin/
  </VirtualHost>

• Apache Reverse proxy with SSL

  Hi,
  I'm trying to install Apache Reverse proxy which will support both HTTP and HTTPS request.
  <b>What do I need to activate to support the HTTPS requests?</b>
  I installed Apache 2.0.53 Released and trying to activate the mod_ssl.
  From Where can I get the mod_ssl.so?
  I saw that there are 2 projects:
  Apache Interface to OpenSSL (mod_ssl)
  Apache-SSL
  Do I need to use them in case I want to use HTTPs?
  Regards,
  Yael

  Get the latest oppenssl compile it. before you compile apache, execute ./configure --help in the apache directory. It will give you the commands that you need to use to activate and deactivate various things in apache.
  mine is as follows:
  ./configure --with-layout=GNU --enable-proxy --enable-ssl --with-ssl=/usr/lo
  cal/src/apachessl/openssl-0.9.7f/ --enable-vhost-alias --enable-rewrite --enable
  -so --enable-proxy-http --enable-proxy-connect --enable- headers
  then make and make install.
  hope it helps.
  Jai

• Problems with Sun One Web Server  6.1 with SP1

  I get errors while compiling my JSP files on SUN one Web Server which is deployed on Solaris 9. it states that cannot compile JSP pages. here is the stack trace that i get.
  [03/Feb/2007:19:11:17] warning (  354): CORE3283: stderr: java.lang.NoClassDefFoundError: com/sun/tools/javac/Main
  [03/Feb/2007:19:11:17] warning (  354): CORE3283: stderr:      at org.apache.jasper.compiler.SunJava14Compiler$JavacTask.run(SunJava14Compiler.java:207)
  [03/Feb/2007:19:11:17] failure (  354): for host 192.168.123.2 trying to GET /reports1/jsp/common/ClientInstall.jsp, service-j2ee reports: StandardWrapperValve[jsp]: WEB2792: Servlet.service() for servlet jsp threw exception
  org.apache.jasper.JasperException: WEB4000: Unable to compile class for JSP
       at org.apache.jasper.compiler.Compiler.compile(Compiler.java:312)
       at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.loadJSP(JspServlet.java:756)
       at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.access$000(JspServlet.java:616)
       at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:401)
       at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:363)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.StandardWrapperValve.invokeServletService(StandardWrapperValve.java:771)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:322)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
       at com.iplanet.ias.web.WebContainer.service(WebContainer.java:586)Please help. The Java version i am using is j2sdk1.4.2_08.

  It looks like the Web Server has somehow been configured to use a JRE. Web Server requires a JDK. The following message in particular indicates that a JRE, not a JDK, is being used:java.lang.NoClassDefFoundError: com/sun/tools/javac/MainAre you using the JDK that shipped with Web Server, or did you attempt to configure Web Server to use a different JDK?

• Sun One Web Server 6.1 with MS Active Directory??

  I know this type of question has been posted a few times, but I couldnt locate any clear answer.
  Can we have Sun One WS 6.1 use MS Active Dir as its source of users and groups? I am trying to configure this using the standard base DN and bind DN params, but I get an error saying "could not connect using the binddn and password you provided". I know the bind dn and the password I provided are correct.
  Another colleague of mine who tried the same thing was able to connect, but when he tried to navigate to the users and groups page, he got an error saying "Error trying to connect to the LDAP".
  Anyone who has tried this before, what does it take to get the SUN ONE WS to talk to AD? Can this be done at all?
  Thanks,
  Vinayak

  It looks like the Web Server has somehow been configured to use a JRE. Web Server requires a JDK. The following message in particular indicates that a JRE, not a JDK, is being used:java.lang.NoClassDefFoundError: com/sun/tools/javac/MainAre you using the JDK that shipped with Web Server, or did you attempt to configure Web Server to use a different JDK?

• Sun One Web Server 6.0 with Sun One App Server 7.0

  Does Sun have a plug-in for enabling Sun One Web Server 6.0 to communicate with the Sun One Application Server 7.0? How to get this plugin?

  Yes, it has, and it is shipped with the product. Look at the installation guide and you can find the plugin configuration instructions.
  Regards,
  Juan

• Sophos Firewall\Reverse Proxy With Lync 2013

  We currently have Lync 2013 deployed internally and working like a champ for about 5 months now. We are in the process of trying to get this rolled out externally and running into issues.
  It seems we have the ports opened up properly but the MS remote connectivity analyzer comes back with certificate error "The certificate couldn't be validated because SSL negotiation wasn't successful.
  I'm pretty certain our certificates are correct for the external edge server and the external firewall\Reverse proxy. From the Lync planning tool we have been following it and so far successful until the certificates. The certificates tool shows we should
  have the following certs assigned: (keep in mind we have 2 separate certificates assigned)
  Edge Server External
  Subject name: lyncaccess.domain.com
  SAN:webcon.domain.com and sip.domain.com
  Reverse Proxy:
  rp0100.domain.com (reverse proxy FQDN does resolve)
  SAN: dialin.domain.com, meet.domain.com, and temwac.domain.com (office web apps server)
  We requested the certificates from Go daddy and have them installed and the SANs are in there correct. The connectivity analyzer is able to get to our server using autodiscover over port 443, we see the traffic come in through the firewall and nothing is
  blocked just the certificate could not be validated.
  Has anyone deployed Lync using the Sophos UTM as a reverse Proxy any other ideas as to what we are missing with these certificates?
  The certificate couldn't be validated because SSL negotiation wasn't successful.
  The certificate couldn't be validated because SSL negotiation wasn't successful.

  lyncdiscover.domain.com does not resolve. Discovery is working fine through the connectivity analyzer. We actually figured that part out about the SSL. It seems we had the firewall and Reverse proxy rules in place on the Sophos appliance but the firewall
  rules leaving the edge server were being blocked. It took us about 1.5 days to figure that part out.
  The connectivity analyzer now is able to authenticate the certificates successfully. Of course it wouldn't be a Lync roll out without the next issue coming up.
  The next issue we have is the connectivity analyzer reaching the AV service. Which we are going to assume is a routing issue as well and are currently troubleshooting it:
  Couldn't sign in. Error: Error Message: The endpoint was unable to register. See the ErrorCode for specific reason..
  Error Type: RegisterException.
  Deregister Reason: None.
  Response Code: 504.
  Response Text: Server time-out.
  http://social.technet.microsoft.com/Forums/lync/en-US/f95c47cc-f8eb-4646-bdac-6c7244b26ff1/couldnt-sign-in-error-error-message-the-endpoint-was-unable-to-register-new-deployment?forum=ocsplanningdeployment
  Wish me luck.