Ping a Specific Port

Question

Michael

Asked: 2016-12-24 00:04:37 +0800 CST2016-12-24 00:04:37 +0800 CST 2016-12-24 00:04:37 +0800 CST

Couple of questions related to the Apache proxy configuration

772

This is the configuration:

<Directory />
    Deny from all
    Allow from localhost
    Order Deny,Allow
    AuthType Basic
    Require valid-user
    AllowOverride None
    Satisfy any
    Options None FollowSymLinks
</Directory>


<Proxy *>
    Deny from all
    Order Deny,Allow
    AuthType Basic
    Require valid-user
    Satisfy any
    Options None FollowSymLinks
</Proxy>

Questions:

1) Why configured Proxy * if already configured Directory /?

2) Should be configured Proxy * or Proxy /

3) Should all attributes (e.g. Deny from all or Allow from localhost) be configured twice (Proxy and Directory) or enough only in one place? If in one place where it should configured: Proxy or Directory?

4) What configuration takes priority Proxy or Directory?

Added Is order of Directory / Proxy in the configuration file is important? For example if I have specific /app related section should it be before or after the root section?

<Directory /app>
    AuthType None 
</Directory>

<Proxy http://localhost:8080/app >
    AuthType None
</Proxy>

1 Answers

Voted

kubanczyk · Answer 1 · 2016-12-24T02:15:53+08:00

Basic explanations:

URI is what you see near the top of the browser window. Server sees it in a HTTP GET xxx ... Host: yyy at the beginning of each conversation.
Frontend is your apache; generally a server explicitly included into URI, hence contacted by clients (browsers); but frontend only does some intermediary processing of the request, and passes it to other backend server, passes back the result. In your case the intermediary processing seems to be TLS/SSL, and backend is Tomcat.
Apache docs say reverse proxy when referring to a frontend. That's a synonym.
Browsers don't need to know backend and vice versa.
Browser sends one URI, frontend changes the URI, backend sees a different URI.

Now the actual answer to your question is:

The <Proxy> matches a backend URI.
The <Directory> matches a real local filesystem directory, something that you can cd from the shell.
Thus the request that matches <Directory> quite possibly never matches a <Proxy>.

Rest of what you wrote requires either looking into the docs for like a minute, or asking as a separate question on this site.

Couple of questions related to the Apache proxy configuration

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?