stackoom
  简体   繁体   中英

Ubuntu 14.04 Apache + SSL server, how to configure Varnish

 原文  2016-03-08 00:37:37       apache/ magento/ ssl/ nginx/ varnish

Question

I have a Magento running on a Ubuntu 14.04 server with Apache2 and SSL. I have installed Varnish but not sure how to set it up with SSL without using Nginx. this is my current vhost file ; 

    <VirtualHost *:443>

    ServerName mysite.com
    ServerAlias www.mysite.com
    ServerAdmin webmaster@localhost
    DocumentRoot /var/www/mysite.com

    <Directory /var/www/mysite.com/>
    Options Indexes FollowSymLinks MultiViews
    AllowOverride All
    </Directory>

    SSLEngine on
    SSLCertificateFile /home/ssl/mysite_com.crt
    SSLCertificateKeyFile /home/ssl/mysite.com.key
    SSLCACertificateFile /home/ssl/mysite_com.ca-bundle

    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined

    </VirtualHost>
    <VirtualHost *:80>
    ServerName mysite.com
    RewriteEngine On
    RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [L,R=permanent]
    </VirtualHost>

2 answers

solution1
 2 ACCPTED  2016-03-31 03:18:32

With your current Apache I would do:

Configure your site to listen in another port, 8888 for example 

<VirtualHost *:8888>
   ServerName mysite.com
   ServerAlias www.mysite.com
   ServerAdmin webmaster@localhost
   DocumentRoot /var/www/mysite.com

  <Directory /var/www/mysite.com/>
    Options Indexes FollowSymLinks MultiViews
    AllowOverride All
  </Directory>
</VirtualHost>

Then configure the SSL one to proxy to Varnish 

<VirtualHost *:443>

  # what you had above plus the following:

  RequestHeader set X-Forwarded-Proto "https"
  ProxyPass / http://localhost:6081/
  ProxyPassReverse / http://localhost:6081/
</VirtualHost>

You will need some extra modules: 

sudo a2enmod headers proxy proxy_http proxy_html

Finally Configure Varnish backend to use port 8888 

backend default {
  .host = "127.0.0.1";
  .port = "8888";
}

solution2
 0  2016-03-30 07:00:27

Short answer, you can't setup Varnish with SSL since Varnish doesn't support it.

You have 2 options

  1. Setup Nginx (or some other SSL-terminator) infront of Varnish which acts as reverse proxy and forwards the requests to Varnish via HTTP.

  2. Split the traffic between your current Apache2 server (that supports SSL) and Varnish. The HTTP-traffic on port 80 goes to Varnish and the HTTPS-traffic on port 443 goes to Apache2.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to Configure Passenger with Apache2 + Ruby on Rails on Ubuntu 14.04 LTS How do I configure SSL on Apache on Ubuntu? configure varnish ssl with apache on debian 10 apache server not restarting in ubuntu 14.04 Installing SSL On apache2 & Ubuntu 14.04 Enabling SSL for Vhost on Ubuntu 14.04 / Apache2 Install and Configure varnish cache on Ubuntu server with VestaCP How to configure SSL in Apache on local server in Linux? How to install SSL certificate in apache server in ubuntu Page not found error on apache server on ubuntu 14.04
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM