{"id":85,"date":"2023-11-27T12:43:45","date_gmt":"2023-11-27T11:43:45","guid":{"rendered":"https:\/\/artheodoc.fr\/?page_id=85"},"modified":"2024-06-19T10:39:43","modified_gmt":"2024-06-19T08:39:43","slug":"parametrage-du-reverse-proxy-avec-installation-des-certificats","status":"publish","type":"page","link":"https:\/\/artheodoc.fr\/index.php\/parametrage-du-reverse-proxy-avec-installation-des-certificats\/","title":{"rendered":"Param\u00e9trage du Reverse Proxy avec installation des certificats"},"content":{"rendered":"\n<p class=\"has-vivid-red-color has-text-color has-link-color wp-elements-eba42b8b67a54f46b3791b80d1694499\">Avec cette proc\u00e9dure on modifie automatiquement le fichier .conf pour le http (port 80) et on g\u00e9n\u00e8re le fichier .conf pour le https (port 443).<\/p>\n\n\n\n<p class=\"has-large-font-size\">\u00c9tape 1-<span class=\"markedContent\" id=\"page3R_mcid3\"> Configuration sur le Reverse Proxy.<\/span><\/p>\n\n\n\n<p>Dans le dossier \/etc\/apache2\/sites-available<\/p>\n\n\n\n<p>Cr\u00e9er le fichier exemple.conf<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>nano exemple.conf<\/strong><\/pre>\n\n\n\n<p class=\"has-large-font-size\"><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;VirtualHost *:80&gt;\nServerName <strong>exemple.memoirevive79.mooo.com<\/strong>\nProxyPreserveHost On\nProxyRequests On\nProxyPass \/ http:\/\/<strong>192.168.2.79<\/strong>\/\nProxyPassReverse \/ http:\/\/<strong>192.168.2.79<\/strong>\n&lt;\/VirtualHost&gt;<\/pre>\n\n\n\n<p>Pour quitter nano et enregistrer les modifications <strong>[CRTL]<\/strong> + <strong>[X]<\/strong> ==&gt; <strong>[O]<\/strong> ==&gt; [Entr\u00e9e]<\/p>\n\n\n\n<p>Puis l\u2019activer (une seule fois suffit) :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>a2ensite exemple.conf<\/strong><\/pre>\n\n\n\n<p>Puis relancer Apache :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>systemctl reload apache2<\/strong><\/pre>\n\n\n\n<p>V\u00e9rifier qu\u2019il n\u2019y a pas de probl\u00e8mes sous Debian 11 :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>tail -f \/var\/log\/syslog<\/strong><\/pre>\n\n\n\n<p>Pour quitter <strong>[CTRL]<\/strong> + <strong>[C]<\/strong><\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity is-style-wide\"\/>\n\n\n\n<p class=\"has-large-font-size\">\u00c9tape 2 &#8211; Installation des certificats Let\u2019s Encrypt sur le Reverse Proxy.<\/p>\n\n\n\n<p>Pour obtenir et installer les certificats voir <a href=\"https:\/\/artheodoc.fr\/index.php\/installation-de-certbot\/\" data-type=\"page\" data-id=\"96\" target=\"_blank\" rel=\"noreferrer noopener\">Installation de Cerbot<\/a><\/p>\n\n\n\n<p>Ex\u00e9cutez cette commande pour obtenir un certificat et demandez \u00e0 Certbot de modifier automatiquement votre configuration apache en activant l&rsquo;acc\u00e8s HTTPS en une seule \u00e9tape.<\/p>\n\n\n\n<p>Dans mon cas en administrateur  :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>certbot --apache -d exemple.memoirevive79.mooo.com<\/strong><\/pre>\n\n\n\n<p><strong>Virtualhost pour le port 80 HTTP qui a \u00e9t\u00e9 modifi\u00e9 automatiquement<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;VirtualHost *:80&gt;\nServerName exemple.memoirevive79.mooo.com\nProxyPreserveHost On\nProxyRequests On\nProxyPass \/ http:\/\/192.168.2.79\/\nProxyPassReverse \/ http:\/\/192.168.2.79\nRewriteEngine on\nRewriteCond %{SERVER_NAME} =exemple.memoirevive79.mooo.com\nRewriteRule ^ https:\/\/%{SERVER_NAME}%{REQUEST_URI}\n[END,NE,R=permanent]\n&lt;\/VirtualHost&gt;<\/pre>\n\n\n\n<p><strong>Virtualhost pour le port 443 HTTPS cr\u00e9\u00e9 automatiquement dans le fichier exemple-le-ssl.conf<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>cat \/etc\/apache2\/sites-available\/exemple-le-ssl.conf<\/strong><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;IfModule mod_ssl.c&gt;\n&lt;VirtualHost *:443&gt;\nServerName exemple.memoirevive79.mooo.com\nProxyPreserveHost On\nProxyRequests On\nProxyPass \/ http:\/\/192.168.2.79\/\nProxyPassReverse \/ http:\/\/192.168.2.79\nSSLCertificateFile\n\/etc\/letsencrypt\/live\/exemple.memoirevive79.mooo.com\/fullchain.pem\nSSLCertificateKeyFile\n\/etc\/letsencrypt\/live\/exemple.memoirevive79.mooo.com\/privkey.pem\nInclude \/etc\/letsencrypt\/options-ssl-apache.conf\n&lt;\/VirtualHost&gt;\n&lt;\/IfModule&gt;<\/pre>\n\n\n\n<p>Je peux ensuite tester l\u2019acc\u00e8s avec <strong>http:\/\/exemple.memoirevive79.mooo.com<\/strong> et <strong>https:\/\/exemple.memoirevive79.mooo.com<\/strong><\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity is-style-wide\"\/>\n\n\n\n<p class=\"has-large-font-size\">En cas de probl\u00e8mes<\/p>\n\n\n\n<p class=\"has-medium-font-size\">Sous Debian 11<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>systemctl reload apache2<\/strong><\/pre>\n\n\n\n<p>Pour contr\u00f4ler qu\u2019il n\u2019y a pas d\u2019erreurs au red\u00e9marrage sous Debian 11 :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>tail -f \/var\/log\/syslog<\/strong><\/pre>\n\n\n\n<p><strong>[CTRL]<\/strong> + <strong>[C]<\/strong> pour quitter.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p class=\"has-medium-font-size\">Sous Debian 12<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>systemctl restart apache2<\/strong><\/pre>\n\n\n\n<p>Pour consulter le log pour Apache sous Debian 12 :<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><strong>journalctl -u apache2.service<\/strong><\/pre>\n\n\n\n<p><strong>[Q]<\/strong> pour quitter<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Avec cette proc\u00e9dure on modifie automatiquement le fichier .conf pour le http (port 80) et on g\u00e9n\u00e8re le fichier .conf pour le https (port 443). \u00c9tape 1- Configuration sur le Reverse Proxy. Dans le dossier \/etc\/apache2\/sites-available Cr\u00e9er le fichier exemple.conf nano exemple.conf &lt;VirtualHost *:80&gt; ServerName exemple.memoirevive79.mooo.com ProxyPreserveHost On ProxyRequests On ProxyPass \/ http:\/\/192.168.2.79\/ ProxyPassReverse \/ [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"class_list":["post-85","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/pages\/85","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/comments?post=85"}],"version-history":[{"count":7,"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/pages\/85\/revisions"}],"predecessor-version":[{"id":825,"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/pages\/85\/revisions\/825"}],"wp:attachment":[{"href":"https:\/\/artheodoc.fr\/index.php\/wp-json\/wp\/v2\/media?parent=85"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}