Hi,I tested it on apache 1.3.26 on a linux system. It should be the same for 1.3.27 since, by looking at the cvs, nothing changed in the involved areas.
while setting up apache as an ssl proxy to some backend servers I noticed that a reverse lookup is performed for each new connection to the internal server.
I wondered if it was possible to prevent this but by looking at the source code of mod_proxy it doesn't seem so.
Apache 2 behaves in the same way.
Relevant configuration options:
HostnameLookups Off Listen 192.168.1.1:443 <VirtualHost 192.168.1.1:443> ServerName some.host.com SSLEngine On SSLCertificateFile /opt/apache/conf/ssl.crt/my.crt SSLCertificateKeyFile /opt/apache/conf/ssl.key/my.key ProxyPass / http://192.168.2.1:80/ ProxyPassReverse / http://192.168.2.1:80/ </VirtualHost>
As a workaround I've added the internal server's ip addresses to /etc/hosts
IMHO the reverse lookup should be made avoidable from the configuration file. (Maybe it should be made avoidable completely, unless I'm missing a possible reason to revese lookup there...)
Regards.
-- Federico Mennite Lifeware AG
