• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Squid3 reverse proxy multi-SSL sites

Scheduled Pinned Locked Moved pfSense Packages
3 Posts 3 Posters 10.2k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • K
    kenray127
    last edited by Sep 6, 2012, 2:46 PM

    Hello,

    I have been a a pfSense user for over 5 years. AWESOME firewall. I use it for almost everything. I found squid3 reverse proxy and that peaked my interest. I have a vm linux box running apache2 doing my reverse proxy work now. It would be awesome to have pfsense do this too.

    I did not see a way to add multi SSL hosts. Below is how my proxy is setup with apache2 IPs and names have been changed to protect the innocent!

    example:

    Internal Net:
    server1.local - 10.20.1.100
    server2.local - 10.20.1.102
    server3.local - 10.20.1.103

    External sites
    site1.domain.com 80
    site2.domain.com 80
    site3.domain.com 443
    site4.domain.com 443
    site5.domain.com 80 & 443

    Mapping
    site1.domain.com 80 -> server1.local on 80
    site2.domain.com 80 -> server1.local on 80
    site3.domain.com 443 -> server2.local on 80
    site4.domain.com 443 -> server3.local on 443
    site5.domain.com 80 & 443 - > server3.local on 80 & 443

    Can I do the above with pfSense and squid3 reverse proxy? If so how do I go about doing that!

    Thanks again

    -K

    1 Reply Last reply Reply Quote 0
    • C
      canefield
      last edited by Sep 13, 2012, 9:03 AM

      Hi,

      I've tried this too. I had no luck yet. But the forum is telling me it could be managed with Squid RP, HAProxy as well as Mod_Security (Apache). If you manage one or the others please post you findings and guidance. Perhaps for your environment the Mod_Security is the most obvious one.

      See the HAProxy link for further development with Mod_Security from Marcello.

      Links:
      http://forum.pfsense.org/index.php/topic,52188.0.html (Reverse Proxy)
      http://forum.pfsense.org/index.php/topic,49429.0.html (HAProxy)
      http://forum.pfsense.org/index.php/topic,49254.0.html (Squid3)
      http://forum.pfsense.org/index.php/topic,47962.0.html (Compare)
      http://forum.pfsense.org/index.php/topic,47032.0.html (Alternative MS TMG)

      Furthermore, if you have valuable input regarding the topics above, please feel free to react.

      KR,
      Canefield

      1 Reply Last reply Reply Quote 0
      • M
        marcelloc
        last edited by Sep 18, 2012, 3:45 AM

        take a look on this post:

        http://forum.pfsense.org/index.php/topic,53701.msg287417.html#msg287417

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        3 out of 3
        • First post
          3/3
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
          This community forum collects and processes your personal information.
          consent.not_received