Issue Proxying SSL session

First time poster so hope you can help with my issue.
Im trying to proxy SSL sessions from the internet to an internal application server, basically due to some SSL port rejigging outside of my control. The SSL session comes in through a Fw on 443 and is sent on to my Apache which is configured to listen on 443. I then have the below configuration but it doesnt seem to work. Errors log added below aswell.
AllowCONNECT 443 8443SSLCertificateKeyFile "d:/Apache2.2/conf/security/my-server.key" SSLCertificateFile "d:/Apache2.2/conf/security/my-server.cert" SSLSessionCacheTimeout 360 SSLEngine on SSLProxyEngine on #UseCanonicalName on #ProxyPass / https://www.365online.com/ #ProxyPassReverse / https://www.365online.com/
ProxyPass / https://10.147.71.150:8443/autoattendant-gui-web ProxyPassReverse / https://10.147.71.150:8443/autoattendant-gui-web
Error Log

[Mon May 26 12:31:18 2008] [info] Init: Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:18 2008] [info] Loading certificate & private key of SSL-aware server
[Mon May 26 12:31:18 2008] [debug] ssl_engine_pphrase.c(469): unencrypted RSA private key - pass phrase not required
[Mon May 26 12:31:18 2008] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Mon May 26 12:31:19 2008] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Mon May 26 12:31:19 2008] [info] Init: Initializing (virtual) servers for SSL
[Mon May 26 12:31:19 2008] [info] Configuring server for SSL protocol
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(708): Configuring RSA server certificate
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(747): Configuring RSA server private key
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [info] mod_ssl/2.2.8 compiled against Server: Apache/2.2.8, Library: OpenSSL/0.9.8g
[Mon May 26 12:31:19 2008] [warn] pid file D:/Apache2.2/logs/httpd.pid overwritten -- Unclean shutdown of previous Apache run?
[Mon May 26 12:31:19 2008] [info] Init: Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:19 2008] [info] Loading certificate & private key of SSL-aware server
[Mon May 26 12:31:19 2008] [debug] ssl_engine_pphrase.c(469): unencrypted RSA private key - pass phrase not required
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Mon May 26 12:31:19 2008] [info] Init: Initializing (virtual) servers for SSL
[Mon May 26 12:31:19 2008] [info] Configuring server for SSL protocol
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(708): Configuring RSA server certificate
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(747): Configuring RSA server private key
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [info] mod_ssl/2.2.8 compiled against Server: Apache/2.2.8, Library: OpenSSL/0.9.8g
[Mon May 26 12:31:19 2008] [notice] Apache/2.2.8 (Win32) mod_ssl/2.2.8 OpenSSL/0.9.8g configured -- resuming normal operations
[Mon May 26 12:31:19 2008] [notice] Server built: Jan 18 2008 00:37:19
[Mon May 26 12:31:19 2008] [notice] Parent: Created child process 832
[Mon May 26 12:31:19 2008] [debug] mpm_winnt.c(487): Parent: Sent the scoreboard to the child
[Mon May 26 12:31:19 2008] [info] Init: Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:19 2008] [info] Loading certificate & private key of SSL-aware server
[Mon May 26 12:31:19 2008] [debug] ssl_engine_pphrase.c(469): unencrypted RSA private key - pass phrase not required
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Mon May 26 12:31:19 2008] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Mon May 26 12:31:19 2008] [info] Init: Initializing (virtual) servers for SSL
[Mon May 26 12:31:19 2008] [info] Configuring server for SSL protocol
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(708): Configuring RSA server certificate
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(747): Configuring RSA server private key
[Mon May 26 12:31:19 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:19 2008] [info] mod_ssl/2.2.8 compiled against Server: Apache/2.2.8, Library: OpenSSL/0.9.8g
[Mon May 26 12:31:19 2008] [info] Init: Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:19 2008] [info] Loading certificate & private key of SSL-aware server
[Mon May 26 12:31:19 2008] [debug] ssl_engine_pphrase.c(469): unencrypted RSA private key - pass phrase not required
[Mon May 26 12:31:19 2008] [info] Init: Generating temporary RSA private keys (512/1024 bits)
[Mon May 26 12:31:20 2008] [info] Init: Generating temporary DH parameters (512/1024 bits)
[Mon May 26 12:31:20 2008] [info] Init: Initializing (virtual) servers for SSL
[Mon May 26 12:31:20 2008] [info] Configuring server for SSL protocol
[Mon May 26 12:31:20 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:20 2008] [debug] ssl_engine_init.c(708): Configuring RSA server certificate
[Mon May 26 12:31:20 2008] [debug] ssl_engine_init.c(747): Configuring RSA server private key
[Mon May 26 12:31:20 2008] [debug] ssl_engine_init.c(384): Creating new SSL context (protocols: SSLv2, SSLv3, TLSv1)
[Mon May 26 12:31:20 2008] [info] mod_ssl/2.2.8 compiled against Server: Apache/2.2.8, Library: OpenSSL/0.9.8g
[Mon May 26 12:31:20 2008] [notice] Child 832: Child process is running
[Mon May 26 12:31:20 2008] [info] Parent: Duplicating socket 120 and sending it to child process 832
[Mon May 26 12:31:20 2008] [debug] mpm_winnt.c(605): Parent: Sent 1 listeners to child 832
[Mon May 26 12:31:20 2008] [debug] mpm_winnt.c(408): Child 832: Retrieved our scoreboard from the parent.
[Mon May 26 12:31:20 2008] [debug] mpm_winnt.c(564): Child 832: retrieved 1 listeners from parent
[Mon May 26 12:31:20 2008] [debug] proxy_util.c(1670): proxy: grabbed scoreboard slot 0 in child 832 for worker https://10.147.71.150:8443/autoattendant-gui-web
[Mon May 26 12:31:20 2008] [debug] proxy_util.c(1761): proxy: initialized worker 0 in child 832 for (10.147.71.150) min=0 max=64 smax=64
[Mon May 26 12:31:20 2008] [debug] proxy_util.c(1670): proxy: grabbed scoreboard slot 1 in child 832 for worker proxy:reverse
[Mon May 26 12:31:20 2008] [debug] proxy_util.c(1761): proxy: initialized worker 1 in child 832 for (*) min=0 max=64 smax=64
[Mon May 26 12:31:20 2008] [notice] Child 832: Acquired the start mutex.
[Mon May 26 12:31:20 2008] [notice] Child 832: Starting 64 worker threads.
[Mon May 26 12:31:20 2008] [notice] Child 832: Starting thread to listen on port 443.
[Mon May 26 12:31:27 2008] [info] [client 127.0.0.1] Connection to child 63 established (server ess.eircom.ie:443)
[Mon May 26 12:31:27 2008] [info] Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1752): OpenSSL: Handshake: start
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1760): OpenSSL: Loop: before/accept initialization
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1817): OpenSSL: read 11/11 bytes from BIO#998320 [mem: 99fb00] (BIO dump follows)
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1750): +-------------------------------------------------------------------------+
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1789): � 0000: 47 45 54 20 68 74 74 70-3a 2f 2f   GET http:// �
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1795): +-------------------------------------------------------------------------+
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv2/v3 read client hello A
[Mon May 26 12:31:27 2008] [info] [client 127.0.0.1] SSL handshake failed: HTTP spoken on HTTPS port; trying to send HTML error page
[Mon May 26 12:31:27 2008] [info] SSL Library Error: 336027804 error:1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request speaking HTTP to HTTPS port!?
[Mon May 26 12:31:27 2008] [info] [client 127.0.0.1] Connection to child 63 established (server ess.eircom.ie:443)
[Mon May 26 12:31:27 2008] [info] Seeding PRNG with 136 bytes of entropy
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1752): OpenSSL: Handshake: start
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1760): OpenSSL: Loop: before/accept initialization
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1817): OpenSSL: read 11/11 bytes from BIO#998320 [mem: 9b91a0] (BIO dump follows)
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1750): +-------------------------------------------------------------------------+
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1789): � 0000: 47 45 54 20 68 74 74 70-3a 2f 2f   GET http:// �
[Mon May 26 12:31:27 2008] [debug] ssl_engine_io.c(1795): +-------------------------------------------------------------------------+
[Mon May 26 12:31:27 2008] [debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv2/v3 read client hello A
[Mon May 26 12:31:27 2008] [info] [client 127.0.0.1] SSL handshake failed: HTTP spoken on HTTPS port; trying to send HTML error page
[Mon May 26 12:31:27 2008] [info] SSL Library Error: 336027804 error:1407609C:SSL routines:SSL23_GET_CLIENT_HELLO:http request speaking HTTP to HTTPS port!?
[Mon May 26 12:31:27 2008] [info] [client 127.0.0.1] Connection to child 63 established (server ess.eircom.ie:443)
[Mon May 26 12:31:27 2008] [info] Seeding PRNG with 136 bytes of entropy
Issue Proxying SSL session

ldw1980

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week
