Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 69658 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AH00898 Error reading from remote server returned by

IngoPohlschneider
Hello everyone,
I am having trouble with some HTTPS services deployed via WAF.

Previously those services were deployed using DNAT.

When accessing the URL I get and Proxy error

This is what the log shows:
2013:09:23-13:41:18  reverseproxy: [Mon Sep 23 13:41:18.313296 2013] [proxy_http:error] [pid 5211:tid 4010797936] (20014)Internal error: [client :58915] AH01102: error reading status line from remote server :443
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="0" user="-" host="" method="GET" statuscode="200" reason="-" extra="-" time="14736" url="/mifs/c/apix/v1/client//appstore" server="" referer="-" cookie="JSESSIONID=" set-cookie="-"
2013:09:23-13:41:18  reverseproxy: [Mon Sep 23 13:41:18.363377 2013] [proxy_http:error] [pid 5211:tid 3985619824] (20014)Internal error: [client :58917] AH01102: error reading status line from remote server :443
2013:09:23-13:41:18  reverseproxy: [Mon Sep 23 13:41:18.363398 2013] [proxy:error] [pid 5211:tid 3985619824] [client :58917] AH00898: Error reading from remote server returned by /mifs/c/apix/v1/client//appstore
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="461" user="-" host="" method="GET" statuscode="502" reason="-" extra="-" time="13823" url="/mifs/c/apix/v1/client//appstore" server="" referer="-" cookie="JSESSIONID=" set-cookie="-"
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="39" user="-" host="" method="GET" statuscode="404" reason="-" extra="-" time="14408" url="/apple-touch-icon-152x152-precomposed.png" server="" referer="-" cookie="-" set-cookie="JSESSIONID=; Path=/mifs; Secure; HttpOnly, HASH_JSESSIONID=; Path=/mifs; Secure"
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="39" user="-" host="" method="GET" statuscode="404" reason="-" extra="-" time="13898" url="/apple-touch-icon-152x152.png" server="" referer="-" cookie="-" set-cookie="JSESSIONID=; Path=/mifs; Secure; HttpOnly, HASH_JSESSIONID=; Path=/mifs; Secure"
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="39" user="-" host="" method="GET" statuscode="404" reason="-" extra="-" time="14605" url="/apple-touch-icon-precomposed.png" server="" referer="-" cookie="-" set-cookie="JSESSIONID=; Path=/mifs; Secure; HttpOnly, HASH_JSESSIONID=; Path=/mifs; Secure"
2013:09:23-13:41:18  reverseproxy: srcip="" localip="" size="45" user="-" host="" method="GET" statuscode="404" reason="-" extra="-" time="14330" url="/apple-touch-icon.png" server="" referer="-" cookie="-" set-cookie="JSESSIONID=; Path=/mifs; Secure; HttpOnly, HASH_JSESSIONID=; Path=/mifs; Secure" 


I masked some information in 

This happens only with this subpath. There is another portal running on this webserver (same real and virtual server) and thats running smoothly

Any ideas?

WAF is kinda hart to debug since the logs give not much of a clue what is the issue [:(]

best regards
chaser


This thread was automatically locked due to age.
Parents
  • 0
    Hey Balfson,
    I just accessed an internal page via external address from my internal host:

    Proxy only shows my client side-loading some external jquery-Lib:
    2013:09:25-13:46:13  httpproxy[15985]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="" dstip="108.161.188.209" user="" statuscode="200" cached="0" profile="REF_HttProTestTransp (Transparent Proxy Test)" filteraction="REF_ACC_GBL_9c410826b3e94d2bbd93a6b9b267dfd4dfd4 (Grimme Group)" size="273199" request="0x1ca40c00" url="code.jquery.com/.../Hardware"


    The reverseproxy log shows the following for my IP (attached due to length)

    I exchanged some metadata but the external IP is the real external address (additional address on the external interface of the UTM) and the internal address is a private IP (10.x.x.x)

    I can access this page without any issues

    Cheers chas0rde

    EDIT: About sticky sessions: This is not required since currently only one real server is protected per virtual server. Therefore this would have no impact (at least if I get sticky sessions correct [;)] )
    reverseproxy.zip
Reply
  • 0
    Hey Balfson,
    I just accessed an internal page via external address from my internal host:

    Proxy only shows my client side-loading some external jquery-Lib:
    2013:09:25-13:46:13  httpproxy[15985]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="" dstip="108.161.188.209" user="" statuscode="200" cached="0" profile="REF_HttProTestTransp (Transparent Proxy Test)" filteraction="REF_ACC_GBL_9c410826b3e94d2bbd93a6b9b267dfd4dfd4 (Grimme Group)" size="273199" request="0x1ca40c00" url="code.jquery.com/.../Hardware"


    The reverseproxy log shows the following for my IP (attached due to length)

    I exchanged some metadata but the external IP is the real external address (additional address on the external interface of the UTM) and the internal address is a private IP (10.x.x.x)

    I can access this page without any issues

    Cheers chas0rde

    EDIT: About sticky sessions: This is not required since currently only one real server is protected per virtual server. Therefore this would have no impact (at least if I get sticky sessions correct [;)] )
    reverseproxy.zip
Children
No Data
Unfiltered HTML