Squid3 reverse proxy multi-SSL sites
-
Hello,
I have been a a pfSense user for over 5 years. AWESOME firewall. I use it for almost everything. I found squid3 reverse proxy and that peaked my interest. I have a vm linux box running apache2 doing my reverse proxy work now. It would be awesome to have pfsense do this too.
I did not see a way to add multi SSL hosts. Below is how my proxy is setup with apache2 IPs and names have been changed to protect the innocent!
example:
Internal Net:
server1.local - 10.20.1.100
server2.local - 10.20.1.102
server3.local - 10.20.1.103External sites
site1.domain.com 80
site2.domain.com 80
site3.domain.com 443
site4.domain.com 443
site5.domain.com 80 & 443Mapping
site1.domain.com 80 -> server1.local on 80
site2.domain.com 80 -> server1.local on 80
site3.domain.com 443 -> server2.local on 80
site4.domain.com 443 -> server3.local on 443
site5.domain.com 80 & 443 - > server3.local on 80 & 443Can I do the above with pfSense and squid3 reverse proxy? If so how do I go about doing that!
Thanks again
-K
-
Hi,
I've tried this too. I had no luck yet. But the forum is telling me it could be managed with Squid RP, HAProxy as well as Mod_Security (Apache). If you manage one or the others please post you findings and guidance. Perhaps for your environment the Mod_Security is the most obvious one.
See the HAProxy link for further development with Mod_Security from Marcello.
Links:
http://forum.pfsense.org/index.php/topic,52188.0.html (Reverse Proxy)
http://forum.pfsense.org/index.php/topic,49429.0.html (HAProxy)
http://forum.pfsense.org/index.php/topic,49254.0.html (Squid3)
http://forum.pfsense.org/index.php/topic,47962.0.html (Compare)
http://forum.pfsense.org/index.php/topic,47032.0.html (Alternative MS TMG)Furthermore, if you have valuable input regarding the topics above, please feel free to react.
KR,
Canefield -
take a look on this post:
http://forum.pfsense.org/index.php/topic,53701.msg287417.html#msg287417