Description
This article describes how the external webserver can utilize reverse proxy pass in order to forward traffic with external users directly to an internal AccelOps Instance
Web Server Configuration
- Install CentOS 6.5
- SSH to CentOS as root
- Install Apache server by running: yum install httpd
- Start Apache server by running: service httpd start
- Enable chkconfig for httpd service by running: chkconfig httpd on
- Install SSL module by running: yum install mod_ssl
- Upload attached ao_ssl.tar to CentOS and Extract file
- Copy ao_ssl/* to /etc/httpd/conf.d/
- Edit ssl.conf and Redirect calls to port 8181 of AccelOps Supervisor by changing Proxy IP address
- ProxyPass /phoenix https://<Super-IP>:8181/phoenix
- ProxyPassReverse /phoenix https://<Super-IP>:8181/phoenix
- Change SELinux boolean value by running: setsebool -P http_can_network_connect 1
- Restart Apache server: service httpd start
AccelOps Supervisor Configuration
- SSH to AccelOps Supervisor and enable inbound 8181 on ip tables (you may need to narrow the source ip also)
- iptables -A INPUT -p tcp -m tcp --dport 8181 -j ACCEPT
- service iptables save
- service iptables restart
Firewall Configuration
- Open port 8181 from Web Server to AccelOps
Logging on to AccelOps
- External users connect to the web server: https://<Web Server IP>/phoenix
- Internal users connect to AccelOps: https://<AccelOps Super IP>