How to detect secure (https) requests behind barracuda firewall?How can you detect SSL offload on server behind a load balancer?Message Queue building on Barracuda Spam FirewallConfigure Barracuda Spam Filter behind Postfix to use client IP when do RBL-checkingBarracuda Web Application Firewall WAF - HTTP - Barracuda Does Not Filter Links Clicked on Pageb.barracudacentral.org how configure my firewall
Why are there five extra turns in tournament Magic?
Why do academics prefer Mac/Linux?
Largest memory peripheral for Sinclair ZX81?
Error when running ((x++)) as root
Can an airline pilot be prosecuted for killing an unruly passenger who could not be physically restrained?
Does the usage of mathematical symbols work differently in books than in theses?
How do we explain the use of a software on a math paper?
Why use a retrograde orbit?
How to get all possible paths in 0/1 matrix better way?
Should all adjustments be random effects in a mixed linear effect?
Good examples of "two is easy, three is hard" in computational sciences
Are there any symmetric cryptosystems based on computational complexity assumptions?
Hotel booking: Why is Agoda much cheaper than booking.com?
In Dutch history two people are referred to as "William III"; are there any more cases where this happens?
Why using a variable as index of a list-item does not retrieve that item with clist_item:Nn?
Quotient of Three Dimensional Torus by Permutation on Coordinates
Can the word crowd refer to just 10 people?
Cycling to work - 30mile return
What animals or plants were used to illustrate ideas of physics?
Why are stats in Angband written as 18/** instead of 19, 20...?
Will this series of events work to drown the Tarrasque?
How to draw pentagram-like shape in Latex?
Failing students when it might cause them economic ruin
Is my company merging branches wrong?
How to detect secure (https) requests behind barracuda firewall?
How can you detect SSL offload on server behind a load balancer?Message Queue building on Barracuda Spam FirewallConfigure Barracuda Spam Filter behind Postfix to use client IP when do RBL-checkingBarracuda Web Application Firewall WAF - HTTP - Barracuda Does Not Filter Links Clicked on Pageb.barracudacentral.org how configure my firewall
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
I've got a number of websites behind a barracuda appliance, on which an SSL certificate is configured. It forwards the requests to IIS as HTTP, without any information about whether the original request from the client was HTTP or HTTPS.
Is there a way to configure barracuda to include a custom HTTP header when it converts from HTTPS to HTTP? Or some other mechanism I might leverage to detect, from website code, whether the original request was HTTPS?
How can you detect SSL offload on server behind a load balancer? discusses doing this for other software, but I can't find a way of doing the same thing with barracuda.
barracuda
edited Apr 13 '17 at 12:14
Community♦
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
add a comment |
I've got a number of websites behind a barracuda appliance, on which an SSL certificate is configured. It forwards the requests to IIS as HTTP, without any information about whether the original request from the client was HTTP or HTTPS.
Is there a way to configure barracuda to include a custom HTTP header when it converts from HTTPS to HTTP? Or some other mechanism I might leverage to detect, from website code, whether the original request was HTTPS?
How can you detect SSL offload on server behind a load balancer? discusses doing this for other software, but I can't find a way of doing the same thing with barracuda.
barracuda
edited Apr 13 '17 at 12:14
Community♦
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
add a comment |
I've got a number of websites behind a barracuda appliance, on which an SSL certificate is configured. It forwards the requests to IIS as HTTP, without any information about whether the original request from the client was HTTP or HTTPS.
Is there a way to configure barracuda to include a custom HTTP header when it converts from HTTPS to HTTP? Or some other mechanism I might leverage to detect, from website code, whether the original request was HTTPS?
How can you detect SSL offload on server behind a load balancer? discusses doing this for other software, but I can't find a way of doing the same thing with barracuda.
barracuda
edited Apr 13 '17 at 12:14
Community♦
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
I've got a number of websites behind a barracuda appliance, on which an SSL certificate is configured. It forwards the requests to IIS as HTTP, without any information about whether the original request from the client was HTTP or HTTPS.
Is there a way to configure barracuda to include a custom HTTP header when it converts from HTTPS to HTTP? Or some other mechanism I might leverage to detect, from website code, whether the original request was HTTPS?
How can you detect SSL offload on server behind a load balancer? discusses doing this for other software, but I can't find a way of doing the same thing with barracuda.
barracuda
barracuda
edited Apr 13 '17 at 12:14
Community♦
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
edited Apr 13 '17 at 12:14
Community♦
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
edited Apr 13 '17 at 12:14
Community♦
1
edited Apr 13 '17 at 12:14
Community♦
1
edited Apr 13 '17 at 12:14
Community♦
1
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
asked Jan 2 '13 at 20:05
user1921874user1921874
1
1
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
The typical way this is done is to have the reverse proxy/load balancer set an HTTP header that specifies the original protocol that was used by the connection from the client. That header is known as X-Forwarded-Proto.
X-Forwarded-Proto: https
Instructions for doing this with the Barracuda Load Balancer can be found in its documentation.
In addition to having the load balancer set this header, your application must also be aware of the header, and pretend that the connection was HTTPS when it is set. Many common applications already recognize X-Forwarded-Proto and act appropriately; check with the vendor of the web app or its developers.
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f462402%2fhow-to-detect-secure-https-requests-behind-barracuda-firewall%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
The typical way this is done is to have the reverse proxy/load balancer set an HTTP header that specifies the original protocol that was used by the connection from the client. That header is known as X-Forwarded-Proto.
X-Forwarded-Proto: https
Instructions for doing this with the Barracuda Load Balancer can be found in its documentation.
In addition to having the load balancer set this header, your application must also be aware of the header, and pretend that the connection was HTTPS when it is set. Many common applications already recognize X-Forwarded-Proto and act appropriately; check with the vendor of the web app or its developers.
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
add a comment |
The typical way this is done is to have the reverse proxy/load balancer set an HTTP header that specifies the original protocol that was used by the connection from the client. That header is known as X-Forwarded-Proto.
X-Forwarded-Proto: https
Instructions for doing this with the Barracuda Load Balancer can be found in its documentation.
In addition to having the load balancer set this header, your application must also be aware of the header, and pretend that the connection was HTTPS when it is set. Many common applications already recognize X-Forwarded-Proto and act appropriately; check with the vendor of the web app or its developers.
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
add a comment |
The typical way this is done is to have the reverse proxy/load balancer set an HTTP header that specifies the original protocol that was used by the connection from the client. That header is known as X-Forwarded-Proto.
X-Forwarded-Proto: https
Instructions for doing this with the Barracuda Load Balancer can be found in its documentation.
In addition to having the load balancer set this header, your application must also be aware of the header, and pretend that the connection was HTTPS when it is set. Many common applications already recognize X-Forwarded-Proto and act appropriately; check with the vendor of the web app or its developers.
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
The typical way this is done is to have the reverse proxy/load balancer set an HTTP header that specifies the original protocol that was used by the connection from the client. That header is known as X-Forwarded-Proto.
X-Forwarded-Proto: https
Instructions for doing this with the Barracuda Load Balancer can be found in its documentation.
In addition to having the load balancer set this header, your application must also be aware of the header, and pretend that the connection was HTTPS when it is set. Many common applications already recognize X-Forwarded-Proto and act appropriately; check with the vendor of the web app or its developers.
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
answered Jan 2 '13 at 21:09
Michael Hampton♦Michael Hampton
177k27322655
177k27322655
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f462402%2fhow-to-detect-secure-https-requests-behind-barracuda-firewall%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
