Apache&Nginx(各自作为反向代理)对自签名后端证书的行为有很大不同
[英]Apache & Nginx (each as reverse proxy) having very different behavior for self signed backend certificate
问题描述
我在我的UAT环境中的Nginx和Apache http服务器(作为反向代理Web服务器)上部署了Angular,后端在Apache Tomcat的春季启动上(用https加密了Java REST api),我注意到Nginx配置为反向代理比Apache BUT容易得多,这主要是因为Apache不信任Java API证书(因为它是自签名的,所以这似乎是正确的)
有人可以解释为什么会这样吗? 我相信Nginx是安全的,但我想知道为什么它允许此自签名证书,而Apache默认情况下会阻止它(仅在SSLProxyVerify无时允许它)?
Nginx配置(相关部分):
location /api {
proxy_pass https://192.168.170.78:7002/;
}
Apache config(相关部分):
# SSL proxy config
SSLProxyEngine on
# Why this must be present for the apache to connect to the backend but not for nginx?
SSLProxyCheckPeerName off
# the (proxy) redirection rules for the server
ProxyPass /api/ https://192.168.170.78:7002/
ProxyPassReverse /api/ https://192.168.170.78:7002/
0 个解决方案
Nginx 作为 Spring WebFlux 的反向代理改变了流式传输行为
[英]Nginx as reverse proxy for Spring WebFlux changes streaming behavior
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.