Forum
hiawatha as a reverse-proxy server
Fred
8 April 2015, 16:13
Hi Hugo,
Have you got any documentation on how to setup / configure hiawatha as a reverse-proxy server?
I looked trough the site but couldn't see any
Thank you
Hiawatha version:
Operating System:
Have you got any documentation on how to setup / configure hiawatha as a reverse-proxy server?
I looked trough the site but couldn't see any
Thank you
Hiawatha version:
Operating System:
Hugo Leisink
8 April 2015, 16:15
No, but there is not much more to tell than what's described in the manual page. Or is there any specific question you have?
ReverseProxy [!]<pattern> http[s]://<hostname>[:<port>][/<path>] [<timeout>] [keep-alive]
Forward the request with URLs that match the regular expression <pattern> to another webserver, where <path> is placed before the original URL. Note that the reverse proxy selection comes before the URL toolkit handling. When <hostname> is an IP address, the value of the Host HTTP header is unchanged. Otherwise, it is replaced with the value of <hostname>. The connection is closed after <timeout> seconds, which is set to 5 seconds by default. By default, Hiawatha doesn't use keep-alive connections to the final webserver. You can enable this by adding 'keep-alive' to the configuration line. When specifying multiple reverse proxies for one (virtual) host, Hiawatha prefers reverse proxies with a scheme (HTTP/HTTPS) matching the one of the client connection. See also CAcertificates.
Example:
ReverseProxy [!]<pattern> http[s]://<hostname>[:<port>][/<path>] [<timeout>] [keep-alive]
Forward the request with URLs that match the regular expression <pattern> to another webserver, where <path> is placed before the original URL. Note that the reverse proxy selection comes before the URL toolkit handling. When <hostname> is an IP address, the value of the Host HTTP header is unchanged. Otherwise, it is replaced with the value of <hostname>. The connection is closed after <timeout> seconds, which is set to 5 seconds by default. By default, Hiawatha doesn't use keep-alive connections to the final webserver. You can enable this by adding 'keep-alive' to the configuration line. When specifying multiple reverse proxies for one (virtual) host, Hiawatha prefers reverse proxies with a scheme (HTTP/HTTPS) matching the one of the client connection. See also CAcertificates.
Example:
ReverseProxy ^/icons http://resources.lan/images
Fred
8 April 2015, 16:59
Thank you Hugo,
What I wanted to do is implementing a web application firewall. to protect the sites I host
What I wanted to do is implementing a web application firewall. to protect the sites I host
Hugo Leisink
8 April 2015, 18:22
To protect your sites from what? This may sound like a silly question, but I mean it seriously. Do you suspect your sites to be vulnerable for SQL injection or XSS? Do you expect (D)DoS attacks or password guessing? Enabling all sorts of security features just because you can is not the right approach. It will then only cost you performance and resources. What webserver do you use for your websites?
You also might want to take a look at the Hiawatha Monitor to keep track of all your websites. This gives you an idea of what possible attacks.
You also might want to take a look at the Hiawatha Monitor to keep track of all your websites. This gives you an idea of what possible attacks.
Fred
9 April 2015, 16:10
I exclusively use Hiawatha for all my web server, hence all the recent entry on the forum here to try to understand how the application work.
I'm still pretty new in server configuration and I was always told to have a web application firewall on the web servers.
I guess that you are probably right here, I won't need it when using Hiawatha.
I am in the progress of setting up Hiawatha Monitor to keep track of my your websites but it is not going well so far...
I have an SQL problem which I can't solved. https://www.hiawatha-webserver.org/forum/topic/1913
I need to make a set of keys so I can give you access to the system.
Fred
I'm still pretty new in server configuration and I was always told to have a web application firewall on the web servers.
I guess that you are probably right here, I won't need it when using Hiawatha.
I am in the progress of setting up Hiawatha Monitor to keep track of my your websites but it is not going well so far...
I have an SQL problem which I can't solved. https://www.hiawatha-webserver.org/forum/topic/1913
I need to make a set of keys so I can give you access to the system.
Fred
Hugo Leisink
9 April 2015, 18:08
Sure, send me a key by mail and I'll take a look at your issue.
Fred
13 April 2015, 15:30
Hi Hugo,
what access would you need?
Fred
what access would you need?
Fred
This topic has been closed.
Copyright © by Hugo Leisink. All rights reserved.
Built upon the Banshee PHP framework.
Built upon the Banshee PHP framework.
