Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can't access a https service behind load balancer through squid reverse proxy

    Scheduled Pinned Locked Moved Firewalling
    1 Posts 1 Posters 542 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B Offline
      Blade1
      last edited by

      Hi All,

      I am trying to publish a web site which is in my DMZ but behind my load balancer. However, the website is inaccessible when attempting to browse to it from the public internet (works from within the network).

      • I have registered a public dns entry for the hostname which points to the reverse proxy IP address
      • The reverse proxy is running and I've set it for the highest port to 79 so that I can use ports 80 and 443 (SSL)
      • The web server in the reverse proxy configuration is the VIP of the load balanced service, which, within F5, is green and working fine
      • I have setup a firewall rule on the reverse proxy IP to accept HTTPS traffic and likewise for the DMZ network
      • I also have port forwarding setup to the VIP
      • The certificate is imported into pfSense for use on https reverse proxy (it's not very clear how to import the certificate but I followed this - blog.stordata.se/index.php/2016/02/08/how-to-convert-your-certificates-so-pfsense-can-use-them/)

      On the firewall rule for the reverse proxy IP I can see that the rule gets hit but I am not sure what happens after there?

      Any advice appreciated.

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.