Dominic_J 0 Posted June 30, 2022 Share Posted June 30, 2022 Hi everyone, we have a ESET PROTECT (Server), Version 9.0 (9.0.1141.0) in use. Additonally we have a Apache Reverse Proxy already running, to mask our HTTPS (443) and HTTP (80) for our Exchange Server. Now I want to use, this Reverse Proxy to call the ESET PROTECT Console from extern. When i try to access the webinterface from extern, than i will run into 500 Failure "Internal Server Error". I figured already out, that it obviusly has to do with the communication between the apache und the Eset Server. But i dont know what is the exact problem. This ist the config in question: #ServerLimit 300 #MaxRequestWorkers 300 MaxConnectionsPerChild 1 #FrontEnd Server Settings #Only redirect http to https and some logging <VirtualHost *:80> ServerName extern.domain.de ServerAdmin mail@domain.de #Logging ErrorLog /var/log/apache2/eset_80_error.log CustomLog /var/log/apache2/eset_80_access.log combined ProxyRequests Off #redirect http to https RewriteEngine On RewriteCond %{HTTPS} off RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} RewriteCond %{SERVER_NAME} =extern.domain.de RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent] </VirtualHost> #HTTPS Virtual Host for ESET Server <VirtualHost *:443> ServerName extern.domain.de ServerAdmin mail@domain.de ErrorLog /var/log/apache2/eset_443_error.log CustomLog /var/log/apache2/eset_443_access.log combined ProxyPass "/" "https://<internal IP ESET Server>/" ProxyPassReverse "/" "https://<internal IP ESET Server>/" <Directory /> Order deny,allow Deny from all </Directory> <Proxy *> Order deny,allow Allow from all </Proxy> #SSL Settings SSLEngine on SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA38 SSLHonorCipherOrder off #SSL Certificate SSLCertificateFile /etc/letsencrypt/live/xxx/fullchain.pem SSLCertificateKeyFile /etc/letsencrypt/live/xxx/privkey.pem Include /etc/letsencrypt/options-ssl-apache.conf </VirtualHost> Any Ideas are welcome Link to comment Share on other sites More sharing options...
Recommended Posts