Hi. I have a local server running as an email server behind a firewall and already use port 80 to connect to my separate box running a web server. I have a web interface for my local email that I wanted to make accessible externally, and instead of switching to different ports I wanted to try to use the proxy method in Apache. On my web server, which is running Debian Sarge and Apache2 (set up with the Perfect Setup description for Debian Sarge), I thought I could simply create a link from mods-available in /etc/apache2 to mods-enabled for proxy.load and proxy.conf. I then also went to my sites-available section and added a new available site (virtual host) as follows: <VirtualHost *> ServerName betamail.xxx.com ProxyRequests Off ProxyPass / http://sunslave.xxx.com:80/ ProxyPassReverse / http://sunslave.xxx.com:80/ </VirtualHost> However, when I then restart apache and try to access the site, I get the following error in firefox and mozilla: Forbidden You don't have permission to access / on this server. Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request. NOW NOTE, I also went to /etc/apache2/mods-enabled and made a soft link to proxy.load and proxy.conf. I then edited proxy.conf so that the lines starting: ProxyRequests Off <Proxy *> Order deny,allow Deny from all Allow from .your.domain-name </Proxy> and changed the "Allow" to "Allow from .xxx.com What is going wrong here? I still get the forbidden error which is driving me crazy. Something obviously not configured right.
One more tid bit When I change "Allow from .xxx.com" to "Allow from all", this then all works. I am sure that is just not a good idea so I have turned this back off. I simply want to proxy pages from my internal server at yy.xx.com. I htought just stating allow from .xx.com woudl do it, but apparently not. Sunil
Using IP address didn't make a difference Tried my IP address for the internal server, but made no difference. I went back and as soon as I allow from all, then it works again. Very strange.
Yes, that is, I use the IP address I statically have the internal server set to. But I will check again. Should have worked though...
