[squid-users] Accel mode SSL + apache on same box + 1 backend server

Fri, 14 Apr 2006 12:03:33 -0700 

Hi list, 

I'm trying to get this config working on squid Version 2.5.STABLE9, but without 
success

          ---------------- https://www.xx.com---------------- 
NET ==> |SQUID on ip:443 | ==>     | apache on 127.0.0.1:80| (vhost,auth)
          ----------------            ------------------------
                                  https://www.xxx.com/yy-----------------       
-----   
                                    ==>     |other box on ip2:80/yy (single 
host)|
                                                
------------------------------------

When I get https://www.xxx.com I want to be redirected to my apache (same box 
as SQUID) on 127.0.0.1:80, when I get https://www.xxx.com/yyy, I want to be 
redirected to another box with ip2:80.

I tried to rewrite the URL with both squidguard redirector or perl script from 
squid DOC: the https://www.xxx.com works but https://www.xxx.com/yy does not 
redirect me to other box.


Relevant config:
-- SQUID
https_port ip:443 cert=/etc/ssl/certs/server.pem key=/etc/ssl/certs/key.pem
redirect_program /usr/local/bin/myredirector.pl

acl www_domains dstdomain https://www.xxx.com/yyy 
http_access allow www_domains
httpd_accel_host 127.0.0.1
httpd_accel_port 80
 httpd_accel_single_host on
 httpd_accel_uses_host_header on
forwarded_for on


------------------------------------
--REDIRECTOR
#!/usr/bin/perl
   $|=1;
      while (<>) {
      [EMAIL PROTECTED]://www.xxx.com/yy /@http://ip2:80/yy/@;
      print;
   }



 
I tried to play with httpd_accel_single_host or httpd_accel_uses_host_header 
but no success.

I there a solution that works with only 1 ip (and 1 domain name) address on the 
squid box? Or do I need to add one more IP and ask squid to do 
"httpd_accel_host virtual" (with a redirector that redirect www.xxx.com to 
localhost and www2.xxx.com to the backend server)?

Any help would be greatly appreciated, cheers

  _______________
David LIMA
Professional Services
www.scc.com
 
 



______________________________________________________________________
Ce message contient des informations dont le contenu est susceptible d'etre 
confidentiel.
Il est destine au(x) destinataire(s) indique(s) exclusivement.

A moins que vous ne fassiez partie de la liste des destinataires, ou que vous 
soyez habilite a recevoir le mail a leur place, il vous est interdit de le 
copier, de l'utiliser ou de devoiler son contenu a un tiers.

Si vous avez recu cet email par erreur, merci de prendre contact avec 
l'emetteur.

Les opinions exprimees dans cet e-mail sont celles de l'emetteur et ne 
refletent pas necessairement celles de l'entreprise.

Ce e-mail peut contenir des pieces jointes dont certaines pourraient contenir 
des virus qui pourraient endommager votre systeme informatique.

La compagnie a pris toutes dispositions afin de minimiser ce risque et decline 
toute responsabilite pour toute perte ou dommage resultant directement ou 
indirectement de l'utilisation de cet email ou de son contenu.

Il vous appartient d'effectuer vos propres controles anti-virus avant d'ouvrir 
la ou les pieces jointes.
______________________________________________________________________

Reply via email to