I am at a complete loss.   I need to use Pound to proxy requests from the
fronting web server, through the pound server in the secure back, to an
internal server with training content.    When I use a "BackEnd" in the Pound
config, i.e. the backend hostname of the training server, I get the default
page for the training server but *no content*.     When I use a "Redirect" in
pound, I get the content but the firewall will not allow a redirect to an
internal server from the Internet.    Can someone PLEASE explain to me the keys
to this problem?   Thank you:

	BackEnd
            	Address tmonline.corp.intranet
             	Port 80
          	End

and/or..
	
	Service
     	  	Redirect "http://tmonline.corp.intranet/67276/index.htm"
     	End

Are the relevent config snippets,

Thomas A. Gray
Midrange Platform Support
Embarq.com
913-534-7202, 913-667-3663
Tom.gray(at)embarq.com


-----Original Message-----
From: Gray, Tom A [EQ] 
Sent: Wednesday, December 20, 2006 1:48 PM
To: pound(at)apsis.ch
Subject: RE: [Pound Mailing List] Pound Proxy and the Firewall problems:

Redirect means you're telling the internet client to redirect to another
site.  So:

Client -> Pound   http://pound.server.com
Pound -> Client   Go Here Instead:
http://tmonline.corp.intranet/67276/index.htm

Which it does, but it can't resolve, so it'll fail.

You want the backend scenario.  However, what your backend does while
connecting to tmonline.corp.intranet is up to you... Hopefully it would
be good enough to send a redirect to /67276/index.htm.  Since it likely
needs to redirect the client, you probably want a RewriteLocation 1
directive in your listener.

With the backend in place, and if it is your only backend, the content
(whether actual content or a blank page) is fully controlled by the
backend server.  If you're getting a blank page, it's either a redirect
gone wrong (which you'll see in the browser as a timeout) or the backend
server isn't serving the content requested.

Joseph Gooch
Sapphire Suite Product Manager
K12 Systems, Inc.
(866) 366-9540

[...]
the[...]
an[...]
the[...]
the[...]
a[...]
a[...]
PLEASE[...]
problems:[...]
pound(at)apsis.ch.[...]

When I append the host name entry in the BackEnd's address with the path, that
is, "...67276/index.htm" , Pound doesn't like it and aborts.     So, using the
hostname in address field, Pound does the proxy to the Backend host, but I just
get the default page for the server.    I can't see how a person could every
proxy down the path to the content.  ????     (RewriteLocation of 1 doesn't
alter what is happening.)  

Thanks,

Thomas A. Gray
Midrange Platform Support
Tom.gray(at)embarq.com
913-534-7202, 913-667-3663


-----Original Message-----
From: Joe Gooch [mailto:mrwizard(at)k12system.com] 
Sent: Thursday, December 21, 2006 5:38 AM
To: pound(at)apsis.ch
Subject: RE: [Pound Mailing List] Pound Proxy'ing Help

Redirect means you're telling the internet client to redirect to another site. 
So:

Client -> Pound   http://pound.server.com
Pound -> Client   Go Here Instead:
http://tmonline.corp.intranet/67276/index.htm

Which it does, but it can't resolve, so it'll fail.

You want the backend scenario.  However, what your backend does while
connecting to tmonline.corp.intranet is up to you... Hopefully it would be good
enough to send a redirect to /67276/index.htm.  Since it likely needs to
redirect the client, you probably want a RewriteLocation 1 directive in your
listener.

With the backend in place, and if it is your only backend, the content (whether
actual content or a blank page) is fully controlled by the backend server.  If
you're getting a blank page, it's either a redirect gone wrong (which you'll
see in the browser as a timeout) or the backend server isn't serving the
content requested.

Joseph Gooch
Sapphire Suite Product Manager
K12 Systems, Inc.
(866) 366-9540

[...]
the[...]
an[...]
the[...]
the[...]
a[...]
a[...]
PLEASE[...]
problems:[...]
pound(at)apsis.ch.[...]

--
To unsubscribe send an email with subject 'unsubscribe' to pound(at)apsis.ch.
Please contact roseg(at)apsis.ch for questions.
http://www.apsis.ch/pound/pound_list/archive/2006/2006-12/1166669815000/1166701063000

Pound does not rewrite the http request. You can't put a path in a
backend.

If the request comes to the pound server for /67276/index.htm, it will
go to the backend path /67276/index.htm.  If it comes to the pound
server for /, it will go to the backend path as /.  You need to modify
the document at the root of the backend to redirect to where you want
them to go.  Just like any web server.

Joseph Gooch
Sapphire Suite Product Manager
K12 Systems, Inc.
(866) 366-9540

[...]
path,[...]
So,[...]
Backend[...]
how a[...]
another[...]
would be[...]
needs[...]
directive in[...]
redirect[...]
backend[...]
from[...]
get[...]
use[...]
allow[...]
"http://tmonline.corp.intranet/67276/index.htm"[...]
pound(at)apsis.ch.[...]
pound(at)apsis.ch.[...]

OR, what you could do:

Service
  Url "^/67276.*"
  Backend
    Address tmonline.corp.intranet
    Port 80
  End
End

Service
  #Catch all
  Redirect "http://mypoundserver.domain.com/67276/index.htm"
End



The second service line might benefit from a regex, maybe Url
"^/(index.html?|default.html?)?"  or something like that.

Maybe instead of only sending 67276 to the backend you want to send
everything to the backend and ONLY redirect ^/ and
index.html/default.html.  

But notice the redirect goes BACK to the POUND server, not the hidden
backend intranet server.

Joseph Gooch
Sapphire Suite Product Manager
K12 Systems, Inc.
(866) 366-9540

[...]
while[...]
content[...]
to[...]
in[...]
pound(at)apsis.ch.[...]

I meant *without* breaking existing connections (duh).

RedShift wrote:[...]