Setting Up an HTTPS Proxy With Apache

Dimas Maulana Development

22-06-2016

Contents

In this article, we will walk you through the process of setting up an HTTPS proxy using Apache. An HTTPS proxy can be useful for various purposes, such as load balancing, reverse proxying, or providing an additional layer of security for your web applications.

To configure Apache as an HTTPS proxy, you will need to make use of the mod_proxy and mod_proxy_http modules, along with the SSL-related settings. Below are the steps to configure Apache as an HTTPS proxy with the provided SSL settings:

Prerequisites

Before you begin, ensure that you have Apache installed on your server. You should also have an SSL certificate and key ready for the domain you want to proxy.

Step 1: Enable the Required Apache Modules

First, you need to enable the necessary Apache modules. Open your terminal and run the following commands:

1
2
3


sudo a2enmod proxy
sudo a2enmod proxy_http
sudo a2enmod ssl

These commands will enable the mod_proxy, mod_proxy_http, and mod_ssl modules.

Step 2: Create a Virtual Host Configuration

Create a new Apache virtual host configuration file for your proxy. You can do this by creating a new .conf file in the /etc/apache2/sites-available/ directory. Replace example.com with your domain or subdomain:

1

sudo nano /etc/apache2/sites-available/proxy-example.com.conf

Add the following configuration to your virtual host file, adjusting it as needed:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19


<VirtualHost *:443>
    ServerName example.com

    SSLEngine on
    SSLCertificateFile /path/to/your/certificate.crt
    SSLCertificateKeyFile /path/to/your/private-key.key

    SSLProxyEngine on
    SSLProxyVerify none
    SSLProxyCheckPeerCN off
    SSLProxyCheckPeerName off
    SSLProxyCheckPeerExpire off

    ProxyPass / http://your-backend-server/
    ProxyPassReverse / http://your-backend-server/

    ErrorLog ${APACHE_LOG_DIR}/proxy-error.log
    CustomLog ${APACHE_LOG_DIR}/proxy-access.log combined
</VirtualHost>

Make sure to replace /path/to/your/certificate.crt and /path/to/your/private-key.key with the actual paths to your SSL certificate and private key. Also, replace example.com with your domain and http://your-backend-server/ with the URL of your backend server.

Step 3: Enable the Virtual Host

Enable the virtual host configuration you just created:

1

sudo a2ensite proxy-example.com

Step 4: Restart Apache

Finally, restart Apache to apply the changes:

1

sudo systemctl restart apache2

Your Apache server should now be configured as an HTTPS proxy with the specified SSL settings. Requests to https://example.com will be proxied to your backend server with SSLProxy settings applied.

Remember to secure your server and manage your SSL certificates properly to ensure the security of your proxy setup.

That’s it! You’ve successfully set up an HTTPS proxy with Apache using the provided SSL settings.