LockFile ${APACHE_LOCK_DIR}/accept.lock
PidFile ${APACHE_PID_FILE}
Timeout 300
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 15
<IfModule mpm_prefork_module>
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 150
MaxRequestsPerChild 0
</IfModule>
<IfModule mpm_worker_module>
StartServers 2
MinSpareThreads 25
MaxSpareThreads 75
ThreadLimit 64
ThreadsPerChild 25
MaxClients 150
MaxRequestsPerChild 0
</IfModule>
<IfModule mpm_event_module>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadLimit 64
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
User ${APACHE_RUN_USER}
Group ${APACHE_RUN_GROUP}
AccessFileName .htaccess
<Files ~ "^\.ht">
Order allow,deny
Deny from all
Satisfy all
</Files>
ServerAdmin webmaster@XXXX.com
UseCanonicalName Off
ServerSignature Off
HostnameLookups Off
ServerTokens Prod
DefaultType text/plain
HostnameLookups Off
Include mods-enabled/*.load
Include mods-enabled/*.conf
ErrorLog ${APACHE_LOG_DIR}/error.log
LogLevel warn
LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_comb$
LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %O" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
SSLProtocol -all +TLSv1 +SSLv3
SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM
SSLMutex file:/var/log/apache2/ssl_mutex
SSLRandomSeed startup file:/dev/urandom 1024
SSLRandomSeed connect file:/dev/urandom 1024
SSLSessionCache shm:/var/log/apache2/ssl_cache_shm
SSLSessionCacheTimeout 600
SSLPassPhraseDialog builtin
Listen 443
<VirtualHost 192.168.3.15:443>
ServerName 192.168.3.15
DocumentRoot /var/www/rproxy
<Proxy *>
AllowOverride None
order allow,deny
allow from all
AuthName "Please Enter EmailAdress/Password"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL ldap://192.168.3.19/o=XXXX?mail
require ldap-filter mail=user1@domain
require ldap-filter mail=user2@domain
</Proxy>
SSLEngine on
SSLOptions +StrictRequire
SSLVerifyClient none
SSLProxyEngine on
SSLCertificateFile /etc/apache2/ssl/ssl.crt/XXXX_1
SSLCertificateKeyFile /etc/apache2/ssl/ssl.key/XXXXX-1
ProxyRequests Off
ProxyPass /
https://192.168.3.19/ ProxyPassReverse /
https://192.168.3.19/ </VirtualHost>
<VirtualHost 192.168.3.16:443>
ServerName 192.168.3.16
DocumentRoot /var/www/rproxy
<Proxy *>
AllowOverride None
order allow,deny
allow from all
AuthName "Please Enter EmailAdress/Password"
AuthType Basic
AuthBasicProvider ldap
AuthLDAPURL ldap://192.168.3.19/o=XXX?mail
require ldap-filter mail=user1@domain
require ldap-filter mail=user2@domain
</Proxy>
SSLEngine on
SSLOptions +StrictRequire
SSLVerifyClient none
SSLProxyEngine on
SSLCertificateFile /etc/apache2/ssl/ssl.crt/XXXX_2
SSLCertificateKeyFile /etc/apache2/ssl/ssl.key/XXXX-2
ProxyRequests Off
ProxyPass /
https://XXXX-online/ ProxyPassReverse /
https://XXXX-online/ </VirtualHost>