Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    All HTTP redirected to HTTPS after 2.2.4 upgrade

    Cache/Proxy
    2
    5
    1666
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jbcrouigneau last edited by

      I use pfSense + Squid as reverse proxy to map one external IP (several subdomains) to several internal servers.
      Some are HTTP, some are HTTPS.
      It worked well until today.
      For now, all attempt to access HTTP sites automatically redirect to HTTPS. Can't figure why…

      Both Squid reverse HTTP and HTTPS are enabled.
      Some servers are configured on port 80 / protocol HTTP
      Others on port 443 / protocol HTTPS

      All servers have apache interface, listening only port 80 or port 443.

      Did I miss an option somewhere ?

      1 Reply Last reply Reply Quote 0
      • J
        jbcrouigneau last edited by

        Greatings,

        Any clue about what to check or how to diagnose this kind of behavior ?

        Best regards.

        1 Reply Last reply Reply Quote 0
        • J
          jbcrouigneau last edited by

          Finally, achieved to narrow my investigations:

          Got this page displaying during redirection:
          HTTP/1.1 301 Moved Permanently
          Location: https://www.xxxx.yyy/
          Content-Length: 0
          Date: Tue, 04 Aug 2015 14:07:15 GMT
          Server: lighttpd/1.4.35

          And found this in pfSense lighttpd config file:
          $SERVER["socket"] == ":80" {
          $HTTP["host"] =~ "(.)" {
          url.redirect = ( "^/(.
          )" => "https://%1/$1" )
          }
          }
          $SERVER["socket"] == "[::]:80" {
          $HTTP["host"] =~ "(.)" {
          url.redirect = ( "^/(.
          )" => "https://%1/$1" )
          }
          }

          But I don't want to have all the HTTP traffic redirected to HTTPS!
          I didn't find where this can be change in webConfigurator. Don't see any such rule in firewall or reverse proxy.
          Many thanks for any advice…

          1 Reply Last reply Reply Quote 0
          • D
            doktornotor Banned last edited by

            @jbcrouigneau:

            But I don't want to have all the HTTP traffic redirected to HTTPS!

            So disable it? SIGDUH!

            1 Reply Last reply Reply Quote 0
            • J
              jbcrouigneau last edited by

              It was there !
              Many thanks !

              1 Reply Last reply Reply Quote 0
              • First post
                Last post

              Products

              • Platform Overview
              • TNSR
              • pfSense
              • Appliances

              Services

              • Training
              • Professional Services

              Support

              • Subscription Plans
              • Contact Support
              • Product Lifecycle
              • Documentation

              News

              • Media Coverage
              • Press
              • Events

              Resources

              • Blog
              • FAQ
              • Find a Partner
              • Resource Library
              • Security Information

              Company

              • About Us
              • Careers
              • Partners
              • Contact Us
              • Legal
              Our Mission

              We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

              Subscribe to our Newsletter

              Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

              © 2021 Rubicon Communications, LLC | Privacy Policy