...
These instructions assume that you are an administrator with sudo access.
To download and install PountPound:
| Code Block | language | bash
|---|
sudo apt-get install pound |
Configure Pound
Save the certificate pem file in /etc/ssl/private. Give it a meaningful name that relates to the url that it protects.
Edit the pound configuration file:
| Code Block |
|---|
sudo vi /etc/pound/pound/.cfg |
so that it looks something like this:
| Code Block |
|---|
## 2 extended
## 3 Apache-style (common log format)
LogLevel 1
## check backend every X secs:
Alive 30
ListenHTTPS
Address 0.0.0.0
Port 443
Cert "/etc/ssl/private/hostedmy.phixflowhost.com.pem"
Client 20
RewriteLocation 1
End
Service
BackEnd
Address 127.0.0.1
Port 327698080
End
End
|
This tells pound to terminate the encryption on any request received on port 443 (using the certificate in /etc/ssl/private/my.host.com.pem) and forward the request unencrypted to port 8080 on the same host (127.0.0.1). RewriteLocation 1 is the default setting; this is required so that pound rewrites the Location in any redirects to HTTPS.
Enable pound
| Code Block |
|---|
sudo vi /etc/default/pound |
Change it from startup=0 to startup=1.
Start the service
| Code Block |
|---|
sudo /etc/init.d/pound start |