Signed certificate with reverse proxy
-
Hi all,
I've been searching all around forums and doc but can't solve my problem.
I have installed and configured reverse proxy with squid3.
So I can access 3 differents Centos Servers by their URL (prod.mydomain.com, dev.mydomain.com, etc..). I have installed a Signed (Trusted ??) SSL Certificate on one of them and everything fine from local network (pfSense is a Virtual Machine on an ESXi) .
But when I try to connect from internet the Signed Certificate is not recognized, my browser ask for exception with a generic certificate.
If I try manually via openssl command "openssl s_client -connect www.mydomain.com:443" I get :
Verify return code: 18 (self signed certificate)
I thought understand I should put certificate files directly in pfSense ?? If Yes I didn't understand how .
Any help appreciated.
Thanks and sorry for my poor english…
Nicolas -
Morning Everybody
In France we say "La nuit porte conseil" that looks like "sleep on it"…
Here is what I did :
Installed pfSense on an VmWare Esxi to be able to use many servers with a single internet address.
THANKS to http://blog.romant.net/technology/configuring-nat-on-esx-and-esxi/
Installed and configured squid3 package in pfSense as I can access 3 differents Centos servers in my virtual network by their URLs
Transfered a Windows trusted certificate in pfSense to avoid users to get "Exception message" in their browsers ;
THANKS to http://knowledge.zomers.eu/pfsense/Pages/How-to-use-a-Windows-PFX-certificate-with-pfSense.aspx
THANKS to http://digfound.blogspot.fr/2012/06/reverse-proxy-ssl-with-pfsense-inc-owa.htmlAnd of course THANKS to pfSense Team that gives us this awesome product.
Regards
Nicolas