如何配置apache proxy ssl foward JBoss?

时间:2015-04-20 04:55:18

标签: apache ssl jboss

我在下面配置了jboss https(standalone.xml):

<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
    <ssl name="https" key-alias="jboss" password="123456" certificate-key-file="${jboss.home.dir}/keystores/jeap6.keystore"/>
</connector>

我可以访问https://ip:8443

我还配置了apache服务器https,因此我可以访问https://ip。 这是httpd.conf的一部分:

<VirtualHost _default_:443>
    ProxyPass /xxx http://192.168.1.188:8080/xxx
    ProxyPassReverse /xxx http://192.168.1.188:8080/xxx
    .
    .
    .
</VirtualHost>

但是当我配置

<VirtualHost _default_:443>
    ProxyPass /xxx https://192.168.1.188:8443/xxx
    ProxyPassReverse /xxx https://192.168.1.188:8443/xxx
    .
    .
    .
</VirtualHost>

它不起作用。 如何解决?

这样记录:

[Mon Apr 20 15:17:51 2015] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
httpd.exe: Could not reliably determine the server's fully qualified domain name, using 192.168.1.187 for ServerName
[Mon Apr 20 15:17:52 2015] [notice] Apache/2.2.25 (Win32) mod_ssl/2.2.25 OpenSSL/0.9.8y configured -- resuming normal operations
[Mon Apr 20 15:17:52 2015] [notice] Server built: Jul 10 2013 01:52:12
[Mon Apr 20 15:17:52 2015] [notice] Parent: Created child process 3884
httpd.exe: Could not reliably determine the server's fully qualified domain name, using 192.168.1.187 for ServerName
[Mon Apr 20 15:17:54 2015] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
httpd.exe: Could not reliably determine the server's fully qualified domain name, using 192.168.1.187 for ServerName
[Mon Apr 20 15:17:54 2015] [notice] Child 3884: Child process is running
[Mon Apr 20 15:17:54 2015] [notice] Child 3884: Acquired the start mutex.
[Mon Apr 20 15:17:54 2015] [notice] Child 3884: Starting 64 worker threads.
[Mon Apr 20 15:17:54 2015] [notice] Child 3884: Starting thread to listen on port 443.
[Mon Apr 20 15:17:54 2015] [notice] Child 3884: Starting thread to listen on port 80.
[Mon Apr 20 15:18:16 2015] [error] [client 192.168.1.188] SSL Proxy requested for www.xxx.com:443 but not enabled [Hint: SSLProxyEngine]
[Mon Apr 20 15:18:16 2015] [error] proxy: HTTPS: failed to enable ssl support for 192.168.1.188:8443 (192.168.1.188)

1 个答案:

答案 0 :(得分:0)

请传递日志文件中的错误。如果密钥库使用自签名密钥,则需要导入公钥以使握手成功。

相关问题
最新问题