Hi everyone,
we have a ESET PROTECT (Server), Version 9.0 (9.0.1141.0) in use. Additonally we have a Apache Reverse Proxy already running, to mask our HTTPS (443) and HTTP (80) for our Exchange Server. Now I want to use, this Reverse Proxy to call the ESET PROTECT Console from extern.
When i try to access the webinterface from extern, than i will run into 500 Failure "Internal Server Error". I figured already out, that it obviusly has to do with the communication between the apache und the Eset Server. But i dont know what is the exact problem.
This ist the config in question:
#ServerLimit 300
#MaxRequestWorkers 300
MaxConnectionsPerChild 1
#FrontEnd Server Settings
#Only redirect http to https and some logging
<VirtualHost *:80>
ServerName extern.domain.de
ServerAdmin mail@domain.de
#Logging
ErrorLog /var/log/apache2/eset_80_error.log
CustomLog /var/log/apache2/eset_80_access.log combined
ProxyRequests Off
#redirect http to https
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI}
RewriteCond %{SERVER_NAME} =extern.domain.de
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>
#HTTPS Virtual Host for ESET Server
<VirtualHost *:443>
ServerName extern.domain.de
ServerAdmin mail@domain.de
ErrorLog /var/log/apache2/eset_443_error.log
CustomLog /var/log/apache2/eset_443_access.log combined
ProxyPass "/" "https://<internal IP ESET Server>/"
ProxyPassReverse "/" "https://<internal IP ESET Server>/"
<Directory />
Order deny,allow
Deny from all
</Directory>
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
#SSL Settings
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA38
SSLHonorCipherOrder off
#SSL Certificate
SSLCertificateFile /etc/letsencrypt/live/xxx/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/xxx/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
</VirtualHost>
Any Ideas are welcome