nanog mailing list archives

Re: Anyone using any Linux SSL proxies?

From: Charles Wyble <charles () thewybles com>
Date: Sat, 14 Mar 2009 22:20:22 -0700



Valdis.Kletnieks () vt edu wrote:

On Sat, 14 Mar 2009 21:56:26 PDT, Mike Lyon said:

Howdy,

I am wondering what folks are recommending/using these days for Linux SSL
proxies? I need to build a linux box that basically acts as an SSL offloader
would (like a BigIP / Cisco ACE / Netscaler would do). Listen on port 443,
decrypt the SSL and then forward the request onto the webserver on port 80.


How much traffic?  That would be a major consideration....



Check out http://www.apsis.ch/pound/

It would appear the magic search term on google is linux reverse sslproxy .... I started searching for linux ssl proxy. That turned up a lotof stuff for wrapping plain text in encryption, not the other wayaround. :)

And yes how much traffic is a major consideration. If a lot, then youwould want to utilize an accelerator card supported by openssl.

Current thread:

Anyone using any Linux SSL proxies? Mike Lyon (Mar 14)
- Re: Anyone using any Linux SSL proxies? Valdis . Kletnieks (Mar 14)
  - Re: Anyone using any Linux SSL proxies? Charles Wyble (Mar 14)
- Re: Anyone using any Linux SSL proxies? Michael K. Smith (Mar 15)
  - Re: Anyone using any Linux SSL proxies? Adrian Chadd (Mar 15)
  - Re: Anyone using any Linux SSL proxies? Andy Davidson (Mar 18)
- Re: Anyone using any Linux SSL proxies? Stuart Henderson (Mar 15)