Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 3 subscribers
  • Views 1157 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Access Webadmin through reverse proxy

thefuzz4
Hey Everyone,

Ok so up until recently this was working flawlessly for me.  I have 2 apache webservers that live in my DMZ and I have rules setup for the astaro to only be available to certain hosts remotely.  However as of late it is no longer reachable externally.  I keep getting a SSL handshake error. 


 ServerName ***.***.net

  ProxyPass / 192.168.1.129:4444/ retry=0 timeout=5

  ProxyPassReverse / https://192.168.1.129:4444/

  

    Order allow,deny

    allow from 192.168.1.0/24 (there are more lines here but for security reasons they've been removed)

    

  SSLProxyEngine On

  SSLEngine On

  SSLProtocol all

  SSLProxyVerify none

  SSLProxyCheckPeerCN off

  SSLVerifyClient None

  SSLCertificateFile /etc/apache2/ssl/***_***_net.crt

  SSLCertificateKeyFile /etc/apache2/ssl/***_***_net.key

  SSLCertificateChainFile /etc/apache2/ssl/sub.class1.server.ca.pem

  SSLCACertificateFile /etc/apache2/ssl/ca.pem


I'm not sure whats changed recently.  The only thing that happend to my apache servers was that they were upgraded to Ubuntu 13.10.  

Thank you all in advance for your help with this.


This thread was automatically locked due to age.
Parents
  • 0
    Access to webadmin can also be controlled from within webadmin under Management -> Webadmin.
    There you can enter the allowed networks so you don't have to use any reverse proxy only for reaching webadmin.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Reply
  • 0
    Access to webadmin can also be controlled from within webadmin under Management -> Webadmin.
    There you can enter the allowed networks so you don't have to use any reverse proxy only for reaching webadmin.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Children
No Data
Cookie Information Banner