Backend Apache httpd server IP address getting exposed while accessing Application using front end Apache httpd server over HTTPS using mod_proxy_http
Issue
- Internal Apache httpd server IP address getting exposed while accessing Application using front end Apache httpd server over HTTPS using mod_proxy_http
- For example backend internal Apache httpd node1 ip
192.168.1.2
and node2 is192.168.1.3
and external Apache httpd ip192.168.1.1
with reverse proxy setup as follows.
- For example backend internal Apache httpd node1 ip
<Proxy balancer://mycluster>
BalancerMember https://192.168.1.2:443 loadfactor=1 ping=10 ttl=600
BalancerMember https://192.168.1.3:443 loadfactor=1 ping=10 ttl=600
ProxySet lbmethod=byrequests
Order allow,deny
Allow from All
</Proxy>
ProxyPass /myapp balancer://mycluster/myapp
ProxyPassReverse /myapp balancer://mycluster/myapp
In such case accessing url https://192.168.1.1/myapp
exposes the ip address of one of internal Apache httpd server randomly.
Environment
- Red Hat Enterprise Linux (RHEL) 6.x
- Apache httpd 2.2.15
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.