MultiCloud Marketplace

Mentor Solutions Application Team - Ryan Geyer

Apache2 SSL Reverse Proxy - Alpha1

Open in Dashboard

Published by Mentor Solutions Application Team - Ryan Geyer on Feb 11, 2011Revision: 2

Description

A reverse proxy server configured using Apache2. This is intended to overcome the issue of having only a single assignable IP address for any EC2 instance. Setting one of these server instances up allows you to use the IP address assigned to it to forward traffic to a single backend box which may be running many SSL sites on different ports.

Effectively, you're paying $6.11(reserved) or $15.60(on-demand) per month for an additional IP address. This makes the most sense if you're running a single (big) windows instance to back many of these proxies, which coincidentally is exactly the way that we're using it.

FAQ

  • Why not use nginx?

    I probably will in the future since it's a bit more conservative about memory and CPU use, but I needed to create this reasonably quickly and get it working in our environment. I was comfortable with Apache2 and knew it could do the job, so it was the easy choice for rapid deployment.

  • What's up with the "Alpha" designation?

    This ServerTemplate uses Chef, which is still in beta on the RightScale management platform, plus this is the first revision of the ServerTemplate to be published. That said, this ServerTemplate is in use in production in our environment, and has been tested pretty thoroughly. Feel free to let me know if you have any problems with this!

  • How come no load balancing?

    There are other ServerTemplates for that, and our use case doesn't necessitate load balancing.

ToDo

  • Add support for a maintenance page/mode
  • Add support for a (god forbid) outage page/mode

Contents

  • Cookbook Repo: git://github.com/rgeyer/cookbooks_opscode_and_rs_subset.git of Linux RightLink 5.6 Compatible

  • Cookbook Repo: git://github.com/rgeyer/cookbooks_public.git of Linux RightLink 5.6 Compatible

  • Cookbook Repo: git://github.com/rgeyer/cookbooks.git of Linux RightLink 5.6 Compatible

  • Cookbook Repo: git://github.com/rgeyer/cookbooks_linux.git of Linux RightLink 5.6 Compatible

  • MultiCloudImage: RightImage_Ubuntu_10.04_i386_v5.6_EBS [rev 8]

  • Recipe: aws::default

  • Recipe: web_apache::configure_ssl_reverse_proxy

  • Recipe: rs_utils::default

  • Recipe: web_apache::install_apache

  • RepoPath: Linux RightLink 5.6 Compatible [rev 5]

    • See More

Revisions

Revision 2 | Feb 11, 2011

* Fixed AWS-S3 Errors & Poor Reporting * Fixed rewrite log file name * Fixed document root & system/maintenance.html paths.

Revision 1 | Jan 18, 2011

Initial Commit.. Alpha1

Discussion

F18411dc996690f70a2b2961c6c7c15bEli Stair on Oct 20, 2011 | Re: v1

Can you provide a more specific/technical description of what this implements? I'm curious if you're just setting up an SNI SSL-offload proxy here, and forward the non-encrypted stream to backend VHOSTS? Thanks, /eli

Info

No Ratings

Supported Clouds

Pricing

All Users

Sign-up for RightScale

Support Information

If you have problems with this server template or any of the scripts, feel free to email me at rgeyer@its.jnj.com.