Nginx proxy_pass to IP but use HTTPS
I haven't used it myself, but it looks like proxy_ssl_name might be what you are looking for:
For example:
proxy_set_header Host example.com;
proxy_ssl_name example.com;
proxy_pass https://1.2.3.4;
See this document for details.
Related videos on Youtube
16 : 43
09 : 50
08 : 25
01 : 29
14 : 09
Comments
-
Chris Smith almost 2 years
I have a legacy server that is secured via SSL certificate for
example.com. I want to put another server infront of this one toproxy_passcertain (legacy) traffic. The new server must be exposed onexample.comtoo.If these were on separate domains (
legacy.example.comandexample.com), I would simply be able toproxy_pass https://legacy.example.com. However, the legacy app is littered with hardcodedexample.comURLs (and it only has a SSL certificate forexample.com). Any other URL (the IP for example) will redirect toexample.com.What I want to do, is
proxy_pass <legacy IP>, set the host header withproxy_set_header Host example.com. But the issue is, this does not use HTTPS.I did something a while back with curl, I was able to connect to a server by it's IP, but specify the domain to use for the certificate. Even though there was no
Arecord forexample.commapping to this IP, I was able to trick it into thinking it was being connected by that domain.curl https://example.com/path --resolve example.com:<IP>Is there anything like this in Nginx?
-
Richard Smith almost 7 yearsHave you tried using theproxy_ssl_namedirective? -
Chris Smith almost 7 years@RichardSmith No, but that is exactly what I was looking for. Thanks!
-