Private Label SSL: Difference between revisions
Jump to navigation
Jump to search
Markkinchin (talk | contribs) No edit summary |
Markkinchin (talk | contribs) No edit summary |
||
| Line 38: | Line 38: | ||
5) Create an A record for your domain pointing at your proxy server's IP address. If you have previously created a CNAME record for non SSL don't forget to remove it. | 5) Create an A record for your domain pointing at your proxy server's IP address. If you have previously created a CNAME record for non SSL don't forget to remove it. | ||
6) Install mod_evasive to block excessive traffic from individual IP's and prevent your entire proxy being blacklisted | |||
apt-get install libapache2-mod-evasive | |||
#these are apropriate configuration values for evasive.conf | |||
DOSHashTableSize 3097 | |||
DOSPageCount 2 | |||
DOSSiteCount 10 | |||
DOSPageInterval 1 | |||
DOSSiteInterval 1 | |||
DOSBlockingPeriod 10 | |||
If you are not using a LAMP proxy server, make sure your server sends requests with HTTP_X_FORWARDED_HOST set as your domain name. | If you are not using a LAMP proxy server, make sure your server sends requests with HTTP_X_FORWARDED_HOST set as your domain name. | ||