Ping a Specific Port

Question

Vladimir Panteleev

Asked: 2012-02-12 01:53:51 +0800 CST2012-02-12 01:53:51 +0800 CST 2012-02-12 01:53:51 +0800 CST

HTTPS vhost multiplexing with upstream client certificate auth with nginx

772

Let's say I have two Apache servers (one per vhost) behind an nginx server.

The problem is that I'd like Apache to do the authentication of client certificates.

Would it be possible for nginx to do the SNI part of SSL (so it knows to which Apache instance to forward to), and forward the rest to Apache?

1 Answers

Voted

Shane Madden · Answer 1 · 2012-02-12T12:59:28+08:00

Best Answer

Shane Madden

2012-02-12T12:59:28+08:002012-02-12T12:59:28+08:00

I don't believe so, since the SSL client as far as Apache's concerned is the nginx server. The nginx proxy can't have the client's private key, so it can't act as the client for authentication purposes when communicating with the Apache servers.

The device communicating with the client needs to be the one dealing with any client authentication - so this probably isn't feasible.

1

HTTPS vhost multiplexing with upstream client certificate auth with nginx

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?