Jump to content

Apache Reverse Proxy for Webinterface (ESET PROTECT) Webserver


Recommended Posts

Hi everyone,

we have a ESET PROTECT (Server), Version 9.0 (9.0.1141.0) in use. Additonally we have a Apache Reverse Proxy already running, to mask our HTTPS (443) and HTTP (80) for our Exchange Server. Now I want to use, this Reverse Proxy to call the ESET PROTECT Console from extern.

When i try to access the webinterface from extern, than i will run into 500 Failure "Internal Server Error". I figured already out, that it obviusly has to do with the communication between the apache und the Eset Server. But i dont know what is the exact problem.

This ist the config in question:
 

#ServerLimit 300
#MaxRequestWorkers 300
MaxConnectionsPerChild 1
#FrontEnd Server Settings

#Only redirect http to https and some logging
<VirtualHost *:80>
ServerName extern.domain.de
ServerAdmin mail@domain.de
#Logging
ErrorLog /var/log/apache2/eset_80_error.log
CustomLog /var/log/apache2/eset_80_access.log combined
ProxyRequests Off
#redirect http to https
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI}
RewriteCond %{SERVER_NAME} =extern.domain.de
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>

#HTTPS Virtual Host for ESET Server
<VirtualHost *:443>
ServerName extern.domain.de
ServerAdmin mail@domain.de
ErrorLog /var/log/apache2/eset_443_error.log
CustomLog /var/log/apache2/eset_443_access.log combined

ProxyPass "/" "https://<internal IP ESET Server>/"
ProxyPassReverse "/" "https://<internal IP ESET Server>/"

<Directory />
Order deny,allow
Deny from all
</Directory>
<Proxy *>
Order deny,allow
Allow from all
</Proxy>
#SSL Settings
SSLEngine on
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA38
SSLHonorCipherOrder     off
#SSL Certificate
SSLCertificateFile    /etc/letsencrypt/live/xxx/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/xxx/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
</VirtualHost>

Any Ideas are welcome

 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...