1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Hosting SSL website on Apache2 & running a secure VPN connection at the same time

Discussion in 'Apache' started by mike_t443, Oct 27, 2019.

  1. #1
    Hiya,

    I'm running an apache webserver on a Ubuntu machine and a VPN service. Furthermore, UFW (Ubuntu firewall) is enabled. This is how it's setup:
    • The VPN & firewall have the SSL port whitelisted which is changed from the standard 443 to a different one, let's say 444.
    • The router in front of the Ubuntu server properly forwards 443 to 444 on the Ubuntu server.
    When I type in the router ip adress with https and VPN disabled, it works like a champ. Now if I enable the VPN it breaks with the following message in Firefox:

    Secure Connection Failed

    An error occurred during a connection to xxx.xxx.xxx.xxx. PR_END_OF_FILE_ERROR

    The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
    Please contact the website owners to inform them of this problem.​

    Just as a test I've done the same to host the website on regular unsecured http through port 80 (also redirected from the router to a custom port on the apache server) and whitelisted the custom port for the firewall & VPN. This connection still works perfectly as it should with the VPN turned on...

    Another thing of note is that when I access the website through the Ubuntu computer LAN address like so: https:slashslahs192.xxx.xxx.xxx:444 it works as well. Just not when coming in from the outside.

    Does anyone know how to fix this behavior? Or is this a bad idea security wise in general anyways? I was thinking that perhaps another port needs to be whitelisted on the VPN for some internal messaging of the Apache server but I can't find any documentation or other posts about this since I'm probably not using the right search terms.

    Any help would be appreciatedSEMrush
     
    mike_t443, Oct 27, 2019 IP
    SEMrush