Apache Ssl Proxy Error
Contents |
here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings reason: error during ssl handshake with remote server and policies of this site About Us Learn more about Stack Overflow
(502)unknown Error 502: Proxy: Pass Request Body Failed To
the company Business Learn more about hiring developers or posting ads with us Stack Overflow Questions Jobs Documentation ssl handshake with remote server failed Tags Users Badges Ask Question x Dismiss Join the Stack Overflow Community Stack Overflow is a community of 4.7 million programmers, just like you, helping each other. Join them; it
Ah00898: Error Reading From Remote Server Returned By
only takes a minute: Sign up Error during SSL Handshake with remote server up vote 39 down vote favorite 13 I have Apache2 (listening on 443) and a web app running on Tomcat7 (listening on 8443) on Ubuntu. I set apache2 as reverse proxy so that I access the web app through port 443 instead of 8443. Besides, I need to ah00898: error during ssl handshake with remote server returned by have SSL communication not only between browser and apache2 but also between apache2 and tomcat7, thus I set SSL on both apache2 and tomcat7. If I try to access the web app by directly contacting tomcat7, everything is fine. The problem is that when I try to access the tomcat's web app through apache2 (reverse proxy), on the browser appears the error: Proxy Error The proxy server could not handle the request GET /web_app. Reason: Error during SSL Handshake with remote server apache tomcat ssl reverse-proxy share|improve this question edited Sep 18 '13 at 13:19 Qben 1,76821120 asked Sep 18 '13 at 12:37 user2791481 196134 Apache does not truest the certificate you have installed on the tomcat. Is it a self-signed cert? Or is it made by an in-house CA? –MK. Sep 18 '13 at 12:55 1 It is self signed with this command: openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt –user2791481 Sep 18 '13 at 12:58 1 serverfault.com/questions/356678/… I think this is what you want: SSLProxyVerify none SSLProxyCheckPeerCN off &
Start here for a quick overview of the site Help Center Detailed answers to any questions you might
Sslproxyverify
have Meta Discuss the workings and policies of this site About
Sslproxycheckpeername
Us Learn more about Stack Overflow the company Business Learn more about hiring developers or posting ads ah01097: pass request body failed to with us Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and network administrators. Join them; it http://stackoverflow.com/questions/18872482/error-during-ssl-handshake-with-remote-server only takes a minute: Sign up Here's how it works: Anybody can ask a question Anybody can answer The best answers are voted up and rise to the top proxy:error AH00898: Error during SSL Handshake with remote server up vote 8 down vote favorite 4 I have a server that acts as a front-end for a http://serverfault.com/questions/538086/proxyerror-ah00898-error-during-ssl-handshake-with-remote-server cPanel mailserver in a network. The apache proxy on the front-end server ran for 152 days without fault then suddenly I now get 500/502 errors when using it to access the webmail clients of the mailserver. The front-end server uses a signed SSL cert, the cPanel sever is using a self signed cert. Here is the error log output from the front-end server when it first started happening: [Tue Sep 10 18:22:52.959291 2013] [proxy:error] [pid 19531] (502)Unknown error 502: [client 173.xx.xx.xx:9558] AH01084: pass request body failed to 184.xx.xx.xx:2096 (184.xx.xx.xx), referer: https://domain.com:2096/cpsess12385596/3rdparty/roundcube/?_task=mail&_refresh=1&_mbox=INBOX
[Tue Sep 10 18:22:52.959469 2013] [proxy:error] [pid 19531] [client 173.xx.xx.xx:9558] AH00898: Error during SSL Handshake with remote server returned by /cpsess12385596/3rdparty/roundcube/, referer: https://domain.com:2096/cpsess12385596/3rdparty/roundcube/?_task=mail&_refresh=1&_mbox=INBOX The front-end server is an EC2 instance running Apache/2.4.6 (Amazon) My VirtualHost setup for the proxy on this server is as follows: < VirtualHost *:2096> ServerName domain.com
SSLEngine on SSLProxyEngine on SSLProxyVerify none SSLProxyCheckPeerCN off SSLCertificateFile /x/x/x/domain.com.crt SSLCertificateKeyFile /x/x/x/domain.com.key SSLCACertificateFile /x/x/x/domain.com.cabundle ProxyPass / https://184.xx.xx.xx:2096/ ProxyPassReverse / https://184.xx.xx.xx:2096/ ProxyPassReverseCookieDomain 184.xx.xx.xx:2096 domStart here for a quick overview of the site Help Center Detailed answers to any questions you might have Meta Discuss the workings and policies of http://serverfault.com/questions/577616/using-https-between-apache-loadbalancer-and-backends this site About Us Learn more about Stack Overflow the company Business Learn more about hiring developers or posting ads with us Server Fault Questions Tags Users Badges Unanswered Ask Question _ Server Fault is a question and answer site for system and network administrators. Join them; it only takes a minute: Sign up Here's how it works: Anybody can ask a question remote server Anybody can answer The best answers are voted up and rise to the top Using Https between Apache Loadbalancer and backends up vote 18 down vote favorite 5 I am using an apache (2.4) server configured as loadbalancer in front of 2 apache servers. It works fine when I use http connections between loadbalancer and backends, however using https does not work. The configuration ssl handshake with of the loadbalancer: SSLProxyEngine on SSLProxyVerify none SSLProxyCheckPeerCN off BalancerMember https://[Backend1]:443/test BalancerMember https://[Backend2]:443/test ProxyPass /test balancer://testcluster The backends only have self-signed certificates for now which is why the certificate verification is disabled. The error-log on the loadbalancer contains the following: [proxy:error] [pid 31202:tid 140325875570432] (502)Unknown error 502: [client ...] AH01084: pass request body failed to [Backend1]:443 ([Backend1]) [proxy:error] [pid 31202:tid 140325875570432] [client ...] AH00898: Error during SSL Handshake with remote server returned by /test/test.jsp [proxy_http:error] [pid 31202:tid 140325875570432] [client ...] AH01097: pass request body failed to [Backend1]:443 ([Backend1]) from [...] () The error-page in the browser contains: Proxy Error The proxy server could not handle the request GET /test/test.jsp. Reason: Error during SSL Handshake with remote server As I already stated above changing the configuration to the http protocol and port 80 works. Also https connections between the client and loadbalancer work, so the ssl module of the loadbalancer seems to be setup properly. Connecting directly to the backend via https also does not yield any errors. Thanks in advance for your time Edit: I figured it out, the problem is that my certificates common na