Description: | | Syntax: | ProxyBlock *|word|host|domain
+ See also
Description: | Container for directives applied to proxied
+resources | Syntax: | <Proxy wildcard-url> ...</Proxy> | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
+Directives placed in <Proxy>
+sections apply only to matching proxied content. Shell-style
+wildcards are allowed.
+
+For example, the following will allow only hosts in
+yournetwork.example.com to access content via your
+proxy server:
+
+
+<Proxy *>
+ Order Deny,Allow
+ Deny from all
+ Allow from yournetwork.example.com
+<Proxy>
+ |
+
+The following example will process all files in the
+foo directory of example.com through the
+INCLUDES filter when they are sent through the proxy
+server:
+
+<Proxy http://example.com/foo/*>
+ SetOutputFilter INCLUDES
+<Proxy>
+ |
+
Description: | Words, hosts, or domains that are banned from being
+proxied | Syntax: | ProxyBlock *|word|host|domain
[word|host|domain] ... | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
The ProxyBlock directive specifies a list of
words, hosts and/or domains, separated by spaces. HTTP, HTTPS, and
@@ -365,7 +390,7 @@ ProxyBlock *
blocks connections to all sites.
-
+
Description: | Default domain name for proxied requests | Syntax: | ProxyDomain Domain | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
This directive is only useful for Apache proxy servers within
intranets. The ProxyDomain directive specifies
the default domain which the apache proxy server will belong to. If a
@@ -378,14 +403,23 @@ will be generated.
NoProxy .mycompany.com 192.168.112.0/21
ProxyDomain .mycompany.com
|
-
+
This directive is useful for reverse-proxy setups, where you want to
have a common look and feel on the error pages seen by the end user.
This also allows for included files (via mod_include's SSI) to get
the error code and act accordingly (default behavior would display
the error page of the proxied server, turning this on shows the SSI
Error message).
-
+
Description: | IO buffer size for outgoing HTTP and FTP
+connections | Syntax: | ProxyIOBufferSize bytes | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
+
+
Description: | Container for directives applied to regular-expression-matched
+proxied resources | Syntax: | <Proxy regex> ...</Proxy> | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
+The <ProxyMatch> directive is
+identical to the <Proxy> directive, except it matches URLs
+using regular expressions.
+
The ProxyMaxForwards directive specifies the
maximum number of proxies through which a request may pass. This is
set to prevent infinite proxy loops, or a DoS attack.
@@ -393,8 +427,8 @@ set to prevent infinite proxy loops, or a DoS attack.
Example
ProxyMaxForwards 10
|
-
-
+
Description: | Maps remote servers into the local server
+URL-space | Syntax: | ProxyPass [path] !|url | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
This directive allows remote servers to be mapped into the space of
the local server; the local server does not act as a proxy in the
conventional sense, but appears to be a mirror of the remote
@@ -420,8 +454,11 @@ a subdirectory. eg.
will proxy all requests to /mirror/foo to foo.com EXCEPT requests made to /mirror/foo/i
NB: order is important. you need to put the exclusions BEFORE the general proxypass directive |
-
+When used inside a <Location> section, the first argument is
+ommitted and the local directory is obtained from the <Location> .
+
Description: | Adjusts the URL in HTTP response headers sent from
+a reverse proxied server | Syntax: | ProxyPassReverse [path] url | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
This directive lets Apache adjust the URL in the Location ,
Content-Location and URI headers on
HTTP redirect responses. This is essential when Apache is used as
@@ -454,14 +491,20 @@ also be used in conjunction with the proxy pass-through feature
mod_rewrite because its doesn't depend on a
corresponding ProxyPass
directive.
-
Description: | | Syntax: | ProxyPreserveHost on|off | Default: | ProxyPreserveHost Off | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy | Compatibility: | Available in
+
+ When used inside a <Location> section, the first argument is
+ommitted and the local directory is obtained from the <Location> .
+
+
When enabled, this option will pass the Host: line from the
incoming request to the proxied host, instead of the hostname
specified in the proxypass line.
This option should normally be turned 'off'.
-
+
Description: | Network buffer size for outgoing HTTP and FTP
+connections | Syntax: | ProxyReceiveBufferSize bytes | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
The ProxyReceiveBufferSize directive
specifies an explicit network buffer size for outgoing HTTP and FTP
connections, for increased throughput. It has to be greater than 512
@@ -470,7 +513,7 @@ be used.
Example
ProxyReceiveBufferSize 2048
|
-
+
Description: | Remote proxy used to handle certain requests | Syntax: | ProxyRemote match remote-server | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
This defines remote proxies to this proxy. match is either the
name of a URL-scheme that the remote server supports, or a partial URL
for which the remote server should be used, or '*' to indicate the
@@ -499,7 +542,13 @@ them.
This option also supports reverse proxy configuration - a backend
webserver can be embedded within a virtualhost URL space even if that
server is hidden by another forward proxy.
-
+
Description: | Remote proxy used to handle requests
+matched by regular expressions | Syntax: | ProxyRemote regex remote-server | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
+The ProxyRemoteMatch is identical
+to the ProxyRemote
+directive, except the first argument is a regular expression
+match against the requested URL.
+
This allows or prevents Apache from functioning as a forward proxy
server. (Setting ProxyRequests to 'off' does not disable use of the
ProxyPass directive.)
@@ -511,14 +560,15 @@ server. (Setting ProxyRequests to 'off' does not disable use of the
secured your server. Open proxy servers are
dangerous both to your network and to the Internet at large. |
-
Description: | | Syntax: | ProxyTimeout seconds | Default: | ProxyTimeout 300 | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy | Compatibility: | Available in
+
This directive allows a user to specifiy a timeout on proxy requests.
This is usefull when you have a slow/buggy appserver which hangs,
and you would rather just return a timeout and fail gracefully instead
of waiting however long it takes the server to return
-
+
Description: | Information provided in the Via HTTP response
+header for proxied requests | Syntax: | ProxyVia on|off|full|block | Default: | ProxyVia off | Context: | server config, virtual host | Status: | Extension | Module: | mod_proxy |
|
This directive controls the use of the Via: HTTP
header by the proxy. Its intended use is to control the flow of of
proxy requests along a chain of proxy servers. See RFC2068 (HTTP/1.1)
diff --git a/docs/manual/mod/mod_proxy.xml b/docs/manual/mod/mod_proxy.xml
index 708aa92ff4..883153da18 100644
--- a/docs/manual/mod/mod_proxy.xml
+++ b/docs/manual/mod/mod_proxy.xml
@@ -99,24 +99,18 @@ enabled using mod_cache as with the forward proxy.
Controlling access to your proxy
-
-
-You can control who can access your proxy via the normal Directory
+ You can control who can access your proxy via the
+Proxy
control block using the following example:
-<Directory proxy:*>
+<Proxy *>
Order Deny,Allow
Deny from all
Allow from 192.168.0
-</Directory>
+</Proxy>
-A Files block
-will also work, and is the only method known to work for all possible
-URLs in Apache versions earlier than 1.2b10.
-
When configuring a reverse proxy, access control takes on the
attributes of the normal server directory configuration.
@@ -264,8 +258,65 @@ since the user's bookmark files will then contain fully qualified hosts.
+
+Proxy
+<Proxy wildcard-url> ...</Proxy>
+Container for directives applied to proxied
+resources
+server config
+virtual host
+
+
+Directives placed in Proxy
+sections apply only to matching proxied content. Shell-style
+wildcards are allowed.
+
+For example, the following will allow only hosts in
+yournetwork.example.com to access content via your
+proxy server:
+
+
+<Proxy *>
+ Order Deny,Allow
+ Deny from all
+ Allow from yournetwork.example.com
+<Proxy>
+
+
+The following example will process all files in the
+foo directory of example.com through the
+INCLUDES filter when they are sent through the proxy
+server:
+
+<Proxy http://example.com/foo/*>
+ SetOutputFilter INCLUDES
+<Proxy>
+
+
+
+
+
+
+ProxyMatch
+<Proxy regex> ...</Proxy>
+Container for directives applied to regular-expression-matched
+proxied resources
+server config
+virtual host
+
+
+The ProxyMatch directive is
+identical to the Proxy directive, except it matches URLs
+using regular expressions.
+
+
+
+
ProxyPreserveHost
+Use incoming Host HTTP request header for
+proxy request
ProxyPreserveHost on|off
ProxyPreserveHost Off
server config
@@ -285,6 +336,7 @@ specified in the proxypass line.
ProxyRequests
+Enables forward (standard) proxy requests
ProxyRequests on|off
ProxyRequests Off
server config
@@ -309,6 +361,7 @@ dangerous both to your network and to the Internet at large.
ProxyRemote
+Remote proxy used to handle certain requests
ProxyRemote match remote-server
server config
virtual host
@@ -346,16 +399,33 @@ server is hidden by another forward proxy.
+
+ProxyRemoteMatch
+Remote proxy used to handle requests
+matched by regular expressions
+ProxyRemote regex remote-server
+server config
+virtual host
+
+
+
+The ProxyRemoteMatch is identical
+to the ProxyRemote
+directive, except the first argument is a regular expression
+match against the requested URL.
+
+
+
ProxyPass
+Maps remote servers into the local server
+URL-space
ProxyPass [path] !|url
server config
virtual host
-
This directive allows remote servers to be mapped into the space of
the local server; the local server does not act as a proxy in the
conventional sense, but appears to be a mirror of the remote
@@ -381,19 +451,25 @@ a subdirectory. eg.
will proxy all requests to /mirror/foo to foo.com EXCEPT requests made to /mirror/foo/i
NB: order is important. you need to put the exclusions BEFORE the general proxypass directive
+
+When used inside a Location section, the first argument is
+ommitted and the local directory is obtained from the Location.
+
ProxyPassReverse
+Adjusts the URL in HTTP response headers sent from
+a reverse proxied server
ProxyPassReverse [path] url
server config
virtual host
-
This directive lets Apache adjust the URL in the Location ,
Content-Location and URI headers on
HTTP redirect responses. This is essential when Apache is used as
@@ -426,11 +502,19 @@ also be used in conjunction with the proxy pass-through feature
mod_rewrite because its doesn't depend on a
corresponding ProxyPass
directive.
+
+When used inside a Location section, the first argument is
+ommitted and the local directory is obtained from the Location.
+
AllowCONNECT
+Ports that are allowed to CONNECT through
+the proxy
AllowCONNECT port [port] ...
AllowCONNECT 443 563
server config
@@ -451,6 +535,8 @@ allow connections to the listed ports only.
ProxyBlock
+Words, hosts, or domains that are banned from being
+proxied
ProxyBlock *|word|host|domain
[word|host|domain] ...
server config
@@ -489,6 +575,8 @@ ProxyBlock *
ProxyReceiveBufferSize
+Network buffer size for outgoing HTTP and FTP
+connections
ProxyReceiveBufferSize bytes
server config
virtual host
@@ -506,8 +594,24 @@ be used.
+
+ProxyIOBufferSize
+IO buffer size for outgoing HTTP and FTP
+connections
+ProxyIOBufferSize bytes
+server config
+virtual host
+
+
+
+
+
+
+
ProxyMaxForwards
+Maximium number of proxies that a request can be forwarded
+through
ProxyMaxForwards number
ProxyMaxForwards 10
server config
@@ -528,6 +632,8 @@ set to prevent infinite proxy loops, or a DoS attack.
NoProxy
+Hosts, domains, or networks that will be connected
+to directly
NoProxy
Domain|
SubNet|
@@ -643,6 +749,7 @@ always served directly, without forwarding to the configured
ProxyTimeout
+Network timeout for proxied requests
ProxyTimeout seconds
ProxyTimeout 300
server config
@@ -662,6 +769,7 @@ of waiting however long it takes the server to return
ProxyDomain
+Default domain name for proxied requests
ProxyDomain Domain
server config
virtual host
@@ -685,6 +793,8 @@ will be generated.
ProxyVia
+Information provided in the Via HTTP response
+header for proxied requests
ProxyVia on|off|full|block
ProxyVia off
server config
@@ -719,6 +829,7 @@ removed. No new Via: header will be generated.
ProxyErrorOverride
+Override error pages for proxied content
ProxyErrorOverride On|Off
ProxyErrorOverride Off
server config
@@ -735,4 +846,6 @@ the error page of the proxied server, turning this on shows the SSI
Error message).
+
+
|
|
|
|