Hello,
I am new to domino behind an IBM Http server acting as a reverse proxy. Looking for some help. I have a number of issues I am facing however will start with what I hope is a simple one.
I want to be able to edit my ldap server names.nsf from outside my firewall.
Inside the firewall (not via the reverse proxy) all works fine and the domino applets load (when viewing names.nsf). Outside I can access the file, authenticate, login and ‘view’ records, however none of the applets load and I cannot edit any records. I am wondering what I need to do to the httpd.conf file to make it work.
You will see I am trying to do a number of other bits with the reverse proxy (sametime, quickr, portal) - ignore the quickr and sametime entries (unless you see something obviously wrong - which of course is likely this being my first foray into httpd.conf) and help me figure what to do with the ldap server applets working outside the firewall first.
I have the IBM HTTP 6.1 server running on the 6.1 portal server
My LDAP server is domino 8.0.1.
Both running on Windows 2000 server
You can see some of the false starts I have had with lots of stuff remmed out. Currently the http server will start and run.
What do I need to do to allow the applets from names.nsf to load such that I can edit records. Thanks for the help.
httpd.conf provided below.
ServerRoot “C:/IBM/HTTPServer”
Timeout 300
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 10
ThreadLimit 2048
ThreadsPerChild 250
MaxRequestsPerChild 0
LoadModule access_module modules/mod_access.so
LoadModule actions_module modules/mod_actions.so
LoadModule alias_module modules/mod_alias.so
LoadModule auth_module modules/mod_auth.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule cgi_module modules/mod_cgi.so
LoadModule dir_module modules/mod_dir.so
LoadModule env_module modules/mod_env.so
LoadModule headers_module modules/mod_headers.so
LoadModule imap_module modules/mod_imap.so
LoadModule include_module modules/mod_include.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule mime_module modules/mod_mime.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule userdir_module modules/mod_userdir.so
#LoadFile C:\IBM\HTTPServer\modules\mod_proxy_html\libxml2.dll
#LoadModule proxy_html_module modules/mod_proxy_html/mod_proxy_html.so
#LoadModule proxy_html_module modules/mod_proxy_html.so
#LoadModule xml2enc_module modules/mod_proxy_html/mod_xml2enc.so
#ProxyHTMLExtended On
#ProxyHTMLEnable On
AfpaEnable
AfpaCache on
AfpaPort 80
AfpaLogFile “C:/IBM/HTTPServer/logs/afpalog” V-ECLF
<IfModule !mod_afpa_cache.c>
Listen 0.0.0.0:80
ExtendedStatus On
ServerName gives the name and port that the server uses to identify itself.
This can often be determined automatically, but we recommend you specify
it explicitly to prevent problems during startup.
If this is not set to valid DNS name for your host, server-generated
redirections will not work. See also the UseCanonicalName directive.
If your host doesn’t have a registered DNS name, enter its IP address here.
You will have to access it by its address anyway, and this will make
redirections work in a sensible way.
ServerName portal.mydomain.com:80
UseCanonicalName Off
DocumentRoot “C:/IBM/HTTPServer/htdocs/en_US”
Options FollowSymLinks
AllowOverride None
<Directory “C:/IBM/HTTPServer/htdocs/en_US”>
Options Indexes FollowSymLinks
AllowOverride None
Order allow,deny
Allow from all
DirectoryIndex index.html index.html.var
AccessFileName .htaccess
<Files ~ “^.ht”>
Order allow,deny
Deny from all
TypesConfig conf/mime.types
DefaultType text/plain
MIMEMagicFile conf/magic
HostnameLookups Off
ErrorLog logs/error.log
LogLevel warn
LogFormat “%h %l %u %t "%r" %>s %b "%{Referer}i" "%{User-Agent}i"” combined
LogFormat “%h %l %u %t "%r" %>s %b” common
LogFormat “%{Referer}i → %U” referer
LogFormat “%{User-agent}i” agent
CustomLog logs/access.log common
ServerTokens Prod
ServerSignature On
Alias /icons/ “C:/IBM/HTTPServer/icons/”
<Directory “C:/IBM/HTTPServer/icons”>
Options Indexes MultiViews
AllowOverride None
Order allow,deny
Allow from all
ScriptAlias /cgi-bin/ “C:/IBM/HTTPServer/cgi-bin/”
<Directory “C:/IBM/HTTPServer/cgi-bin”>
AllowOverride None
Options None
Order allow,deny
Allow from all
#===========================================================================================
Redirect allows you to tell clients about documents which used to exist in
your server’s namespace, but do not anymore. This allows you to tell the
clients where to look for the relocated document.
Example:
Redirect permanent /foo http://www.example.com/bar
#Redirect permanent /portal http://portal.mydomain.com/wps/portal
#Redirect permanent /ldap http://portal.mydomain.com/ldap
#===========================================================================================
IndexOptions FancyIndexing VersionSort
AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
AddIconByType (TXT,/icons/text.gif) text/*
AddIconByType (IMG,/icons/image2.gif) image/*
AddIconByType (SND,/icons/sound2.gif) audio/*
AddIconByType (VID,/icons/movie.gif) video/*
AddIcon /icons/binary.gif .bin .exe
AddIcon /icons/binhex.gif .hqx
AddIcon /icons/tar.gif .tar
AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
AddIcon /icons/a.gif .ps .ai .eps
AddIcon /icons/layout.gif .html .shtml .htm .pdf
AddIcon /icons/text.gif .txt
AddIcon /icons/c.gif .c
AddIcon /icons/p.gif .pl .py
AddIcon /icons/f.gif .for
AddIcon /icons/dvi.gif .dvi
AddIcon /icons/uuencoded.gif .uu
AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
AddIcon /icons/tex.gif .tex
AddIcon /icons/bomb.gif core
AddIcon /icons/back.gif …
AddIcon /icons/hand.right.gif README
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^
DefaultIcon /icons/unknown.gif
ReadmeName README.html
HeaderName HEADER.html
IndexIgnore .??* ~ # HEADER README RCS CVS *,v *,t
AddEncoding x-compress Z
AddEncoding x-gzip gz tgz
AddType application/x-tar .tgz
AddType image/x-icon .ico
AddHandler type-map var
BrowserMatch “Mozilla/2” nokeepalive
BrowserMatch “MSIE 4.0b2;” nokeepalive downgrade-1.0 force-response-1.0
BrowserMatch “RealPlayer 4.0” force-response-1.0
BrowserMatch “Java/1.0” force-response-1.0
BrowserMatch “JDK/1.0” force-response-1.0
BrowserMatch “Microsoft Data Access Internet Publishing Provider” redirect-carefully
BrowserMatch “^WebDrive” redirect-carefully
BrowserMatch “^WebDAVFS/1.[012]” redirect-carefully
BrowserMatch “^gnome-vfs” redirect-carefully
#Enable the forward proxy server. Note: Do not use the ProxyRequests directive if
#all you require is reverse proxy.
ProxyRequests Off
ProxyPreserveHost On
<Proxy *>
Order deny,allow
Deny from all
Allow from all
ProxyPass /lotusquickr http://quickr.mydomain.com/lotusquickr
ProxyPassReverse /lotusquickr http://quickr.mydomain.com/lotusquickr
ProxyPass /LotusQuickr http://quickr.mydomain.com/LotusQuickr
ProxyPassReverse /LotusQuickr http://quickr.mydomain.com/LotusQuickr
ProxyPass /qphtml http://quickr.mydomain.com/qphtml/
ProxyPassReverse /qphtml http://quickr.mydomain.com/qphtml
ProxyPass /quickr http://quickr.mydomain.com/
ProxyPassReverse /quickr http://quickr.mydomain.com/
ProxyPass /qkrconn.exe http://quickr.mydomain.com/qkrconn.exe
ProxyPassReverse /qkrconn.exe http://quickr.mydomain.com/qkrconn.exe
ProxyPass /dm http://quickr.mydomain.com/dm
ProxyPassReverse /dm http://quickr.mydomain.com/dm
ProxyPass /myqcs http://quickr.mydomain.com/myqcs
ProxyPassReverse /myqcs http://quickr.mydomain.com/myqcs
ProxyPass /servlet http://quickr.mydomain.com/servlet
ProxyPassReverse /servlet http://quickr.mydomain.com/servlet
ProxyPass /download http://quickr.mydomain.com/download
ProxyPassReverse /download http://quickr.mydomain.com/download
ProxyPass /QuickPlace http://quickr.mydomain.com/QuickPlace
ProxyPassReverse /QuickPlace http://quickr.mydomain.com/QuickPlace
ProxyPass /$Preferences.nsf http://quickr.mydomain.com/$Preferences.nsf
ProxyPassReverse /$Preferences.nsf http://quickr.mydomain.com/$Preferences.nsf
ProxyPass /$preferences.nsf http://quickr.mydomain.com/$preferences.nsf
ProxyPassReverse /$preferences.nsf http://quickr.mydomain.com/$preferences.nsf
ProxyPass /icons http://quickr.mydomain.com/icons
ProxyPassReverse /icons http://quickr.mydomain.com/icons
ProxyPass /qp2.cab http://quickr.mydomain.com/qp2.cab
ProxyPassReverse /qp2.cab http://quickr.mydomain.com/qp2.cab
ProxyPass /quickr: http://quickr.mydomain.com
ProxyPassReverse /quickr: http://quickr.mydomain.com
ProxyPass /* http://quickr.mydomain.com/*
ProxyPass /names.nsf http://quickr.mydomain.com/names.nsf
#help here below ===========================================================================
ProxyPass /ldap http://ldap.mydomain.com
ProxyPassReverse /ldap http://ldap.mydomain.com
ProxyPass /names.nsf http://ldap.mydomain.com/ldap/names.nsf
ProxyPassReverse /names.nsf http://ldap.mydomain.com/ldap/names.nsf
#help here above ===========================================================================
ProxyPass /sametime http://sametime.mydomain.com
ProxyPassReverse /sametime http://sametime.mydomain.com
#ProxyHTMLURLMap http://sametime.mydomain.com /sametime
#SetOutputFilter proxy-html
ProxyPass /quickr http://quickr.mydomain.com/
ProxyPassReverse /quickr: http://quickr.mydomain.com
#WITH TUNNELING AND WITHOUT HTTPS:
ProxyPass /sametime/communityCBR/* http://sametime.mydomain.com:80/communityCBR/*
ProxyPass /sametime/CommunityCBR/* http://sametime.mydomain.com:80/CommunityCBR/*
ProxyPass /sametime/MeetingCBR http://sametime.mydomain.com:80/MeetingCBR
ProxyPass /sametime/BroadcastCBR http://sametime.mydomain.com:80/BroadcastCBR
ProxyPass /sametime/* http://sametime.mydomain.com/*
ProxyPassReverse http://sametime.mydomain.com/* http://portal.mydomain.com/sametime/*
ProxyMaxForwards 10
ProxyVia On
RewriteEngine On
#RewriteCond %{HTTP_HOST} !^portal.mydomain.com$ [NC]
#RewriteCond %{HTTP_HOST} !^www.mydomain.com$ [NC]
#RewriteRule ^(.*)$ http://portal.mydomain.com/wps/portal [R]
#RewriteRule ^/$ http://portal.mydomain.com/wps/portal [R,L]
#RewriteCond %{HTTP_HOST} !^quickr.mydomain.com$ [NC]
#RewriteRule ^(.*)$ http://portal.mydomain.com/lotusquickr [R]
#RewriteRule ^/$ http://portal.mydomain.com/lotusquickr [R,L]
#RewriteCond %{HTTP_HOST} !^ldap.mydomain.com$ [NC]
#RewriteRule ^(.*)$ http://portal.mydomain.com/ldap [R]
#RewriteRule ^/$ http://portal.mydomain.com/ldap [R,L]
#RewriteCond %{HTTP_HOST} !^sametime.mydomain.com$ [NC]
#RewriteRule ^(.*)$ http://portal.mydomain.com/sametime [R]
#RewriteRule ^/$ http://portal.mydomain.com/sametime [R,L]
LoadModule was_ap20_module “C:\IBM\HTTPServer\Plugins\bin\mod_was_ap20_http.dll”
WebSpherePluginConfig “C:\IBM\HTTPServer\Plugins\config\webserver1\plugin-cfg.xml”