fredead · July 20, 2016 14:02
diff --git a/ssl-proxy-site.conf b/ssl-proxy-site.conf
 <VirtualHost *:80>
        ServerName www.loaders.net
        ServerAdmin [email protected]

        Redirect permanent / https://www.loaders.net

        RewriteEngine On
        RewriteCond %{HTTPS} off
        RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

        ErrorLog ${APACHE_LOG_DIR}/error.log
        CustomLog ${APACHE_LOG_DIR}/access.log combined
 </VirtualHost>


 <IfModule mod_ssl.c>
 <VirtualHost *:443>
 	ServerName www.loaders.net

 	ErrorLog ${APACHE_LOG_DIR}/error.log

        CustomLog ${APACHE_LOG_DIR}/access.log combined
        SSLEngine on

        SSLCertificateFile      /etc/apache2/ssl_server.pem
        SSLCertificateKeyFile /etc/apache2/ssl_server.key

        # Best practice certificates
        SSLProtocol all -SSLv2 -SSLv3
        SSLHonorCipherOrder on
        SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS"

        #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
        BrowserMatch "MSIE [2-6]" \
                        nokeepalive ssl-unclean-shutdown \
                        downgrade-1.0 force-response-1.0
        # MSIE 7 and newer should be able to use keepalive
        BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

 	ProxyPreserveHost On

        <location />
        ProxyPass http://127.0.0.1:8080/
       	ProxyPassReverse http://127.0.0.1:8080/
        </location>

 </VirtualHost>
 </IfModule>
	<VirtualHost *:80>
	ServerName www.loaders.net
	ServerAdmin [email protected]

	Redirect permanent / https://www.loaders.net

	RewriteEngine On
	RewriteCond %{HTTPS} off
	RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

	ErrorLog ${APACHE_LOG_DIR}/error.log
	CustomLog ${APACHE_LOG_DIR}/access.log combined
	</VirtualHost>


	<IfModule mod_ssl.c>
	<VirtualHost *:443>
	ServerName www.loaders.net

	ErrorLog ${APACHE_LOG_DIR}/error.log

	CustomLog ${APACHE_LOG_DIR}/access.log combined
	SSLEngine on

	SSLCertificateFile /etc/apache2/ssl_server.pem
	SSLCertificateKeyFile /etc/apache2/ssl_server.key

	# Best practice certificates
	SSLProtocol all -SSLv2 -SSLv3
	SSLHonorCipherOrder on
	SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+aRSA+RC4 EECDH EDH+aRSA RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS"

	#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
	BrowserMatch "MSIE [2-6]" \
	nokeepalive ssl-unclean-shutdown \
	downgrade-1.0 force-response-1.0
	# MSIE 7 and newer should be able to use keepalive
	BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

	ProxyPreserveHost On

	<location />
	ProxyPass http://127.0.0.1:8080/
	ProxyPassReverse http://127.0.0.1:8080/
	</location>

	</VirtualHost>
	</IfModule>