dandnet
asked on
Proxy addresses with Citrix Secure Gateway
I am trying to proxy ssl through my Citrix Secure Gateway to provide sync capabilities for smart phones. When I make the following entry into the httpd.conf I get a 404 page not found when attempting to hit the Citrix web interface. Am I missing something? The url's do work if entered manually into the iexplorer.
...
# This rule states that Secure Gateway won't proxy anything that starts with /error
ProxyPass /error !
# Begin Custom Proxy Entry
ProxyPreserveHost On
SSLProxyEngine on
# Reverse Proxy ActiveSync
<Location /Microsoft-Server-ActiveSy nc>
ProxyPass https://host.domain.local/Microsoft-Server-ActiveSync
ProxyPassReverse https://host.domain.local/Microsoft-Server-ActiveSync
</Location>
<Location /OMA>
ProxyPass https://host.domain.local/OMA
ProxyPassReverse https://host.domain.local/OMA
</Location>
# Outlook Web Access
<Location /Exchange>
ProxyPass https://host.domain.local/Exchange
ProxyPassReverse https://host.domain.local/Exchange
</Location>
<Location /exchweb>
ProxyPass https://host.domain.local/exchweb
ProxyPassReverse https://host.domain.locall/exchweb
</Location>
<Location /Public>
ProxyPass https://host.domain.local/Public
ProxyPassReverse https://host.domain.local/Public
</Location>
#--End custom proxy
# Reverse Proxy Web Interface
<Location />
ProxyPass http://localhost/
ProxyPassReverse http://localhost/
</Location>
# Used by HTTP custom Log Setting
SetEnvIf nolog ^$ LOG_HTTP=1
...
...
# This rule states that Secure Gateway won't proxy anything that starts with /error
ProxyPass /error !
# Begin Custom Proxy Entry
ProxyPreserveHost On
SSLProxyEngine on
# Reverse Proxy ActiveSync
<Location /Microsoft-Server-ActiveSy
ProxyPass https://host.domain.local/Microsoft-Server-ActiveSync
ProxyPassReverse https://host.domain.local/Microsoft-Server-ActiveSync
</Location>
<Location /OMA>
ProxyPass https://host.domain.local/OMA
ProxyPassReverse https://host.domain.local/OMA
</Location>
# Outlook Web Access
<Location /Exchange>
ProxyPass https://host.domain.local/Exchange
ProxyPassReverse https://host.domain.local/Exchange
</Location>
<Location /exchweb>
ProxyPass https://host.domain.local/exchweb
ProxyPassReverse https://host.domain.locall/exchweb
</Location>
<Location /Public>
ProxyPass https://host.domain.local/Public
ProxyPassReverse https://host.domain.local/Public
</Location>
#--End custom proxy
# Reverse Proxy Web Interface
<Location />
ProxyPass http://localhost/
ProxyPassReverse http://localhost/
</Location>
# Used by HTTP custom Log Setting
SetEnvIf nolog ^$ LOG_HTTP=1
...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
From the Computer Management console, right-click the Web site on which you want to enforce SSL and click Properties.
Click the Web Site tab. In the Web Site Identification section, verify that the SSL Port field is populated with the numeric value 443.
Click Advanced. You should see two fields. The IP address and port of the Web site should already be listed in the Multiple identities for this web site field. Under the Multiple SSL Identities for this web site field, click Add if port 443 is not already listed. Select the server's IP address, and type the numeric value 443 in the SSL Port field. Click OK.