> > <VirtualHost *:443> > ServerName mgmt03 > > <Proxy *> > Order deny,allow > Allow from all > </Proxy> > > SSLEngine on > SSLProxyEngine On > > SSLCertificateFile /etc/ssl/certs/mgmt03.crt > SSLCertificateKeyFile /etc/ssl/private/mgmt03.key > > ProxyRequests Off > ProxyPreserveHost On > # ProxyPass / https://localhost:8443/ > # ProxyPassReverse / https://localhost:8443/ > > <Location /> > Order allow,deny > Allow from all > ProxyPass https://localhost:8443/guacamole/ flushpackets=on > ProxyPassReverse https://localhost:8443/guacamole/ > ProxyPassReverseCookiePath /guacamole/ / > </Location> > > > <Location /websocket-tunnel> > Order allow,deny > Allow from all > ProxyPass ws://localhost:8443/guacamole/websocket-tunnel > ProxyPassReverse ws://localhost:8443/guacamole/websocket-tunnel > </Location> > > I believe your issue is here. For proxying secure WebSocket traffic, this should be "wss://localhost:8443" (etc.), not "ws://localhost:8443". You could also just use unencrypted to the regular Tomcat port (8080) since it's all on the localhost there, and, so long as you limit access to your localhost, there's not really any reason to encrypt traffic like that, staying on the same system and that you're proxying through Apache httpd.
-Nick