Featured:
Allergies
Tech Know
Grilling Guide
eHow Now Blog

How to Use Pound with SSL

Pound is a non-caching reverse proxy server for Linux and UNIX that is used in load balancing, security analysis, decryption and network monitoring. Requests to resources on a network can be configured to pass through Pound, allowing it to decide how to best serve them. Pound supports Secure Socket Layers (SSL), allowing users to send encrypted web requests to the Pound server, where it can then be decrypted and processed. You must compile Pound with SSL support and enable it in your configuration to make use of SSL technology.

Instructions

    • 1

      Download the gzipped Pound tarball from the apsis.ch vendor website. The application is open source and free to use, download and distribute.

    • 2

      Open a new terminal on your system or connect to it securely via SSH. You must connect with an account that has the ability to run the "sudo" command and gain root privileges for the installation.

    • 3

      Navigate to the directory containing the pound code, extract it and move to the new directory. For example, "cd /home/frank/temp; tar -xvzf Pound-*.tgz; cd Pound-*;" without quotation marks.

    • 4

      Run the chmod command on the configure script to ensure it is executable, then initiate it with the "--with-ssl=<opensslssldirectory>" parameter configured to your OpenSSL directory: "chmod a+rx configure; ./configure --with-ssl=/usr/local/openssl" without quotation marks. If you cannot locate your OpenSSL directory, run the command "whereis openssl" to locate it.

    • 5

      Wait for the configure script to complete, then compile the application with the "make" command. It takes no parameters.

    • 6

      Install the newly compiled executable with root privileges, as they will be required to place the installed file in the system-wide directories. Type "sudo make install" without quotation marks, then enter your root password when prompted.

    • 7

      Insert the ListenHTTPS directive into your Pound configuration. Add the following blocks of script using your preferred text editor to the file at "/etc/pound/pound.cfg":

      ListenHTTPS

      Address <Public_Interface_Ip>

      Port 443

      Cert "/usr/local/openssl/etc/mycertificate.pem"

      End

    • 8

      Replace the "<Public_Interface_Ip>," "port number" and "certificate path" with the values for your domain. The public interface IP is the external Internet Protocol address that pound should listen to, while 443 is the default SSL port and can be changed. Replace the "Cert" path with the location of your SSL certificate on the server's hard disk or network.

    • 9

      Restart the Pound service. The "sudo /etc/init.d/pound restart" command will work on most distributions, but consult your operating guide if you have difficulties. You have now configured Pound to make use of SSL.

Related Searches:

References

Resources

Comments

You May Also Like

  • How to Enable SSL Proxies

    SSL stands for "Secure Socket Layer." It is the security system created at the heart of HTTPS (Hypertext Transfer Protocol Secure). SSL...

  • How to Use SSL With PHP

    PHP is a popular scripting language for programming dynamic websites and applications. Secure Socket Layer (SSL) improves the security of your website...

  • How to Install a Temporary SSL Certificate on IIS

    SSL (Secured Socket Layer) is a security protocol that encrypts communications on your Exchange server. IIS (Internet Information Services) is an administrative...

  • How to Configure SSL in PHP

    The Secure Socket Layer (SSL) protocol is a vital part of information security on the Internet. If your PHP application needs to...

  • How to Configure SSL Websphere

    IBM Websphere is a software application server utilized to manage software applications and web servers. It is supported by operating systems such...

  • How to Enable SSL and PHP

    Without proper security, the Internet wouldn't be as useful as it is. You need encryption to send information such as credit card...

  • How to Compile NRPE With an SSL Option

    Nagios is a sophisticated program designed to make it easy for Linux administrators to monitor dozens or even hundreds of systems from...

  • Define SMTP Host

    SMTP stands for Simple Mail Transfer Protocol. The SMTP server you use accepts any email you send and relays it to other...

  • How to Convert Ksi to Mpa

    Ksi is a unit of measurement referring to pressure, specifically the kilopound-force per square inch exerted on an object. This unit is...

  • How to Check if Port 443 is Open

    Transmission Control Protocol (TCP) port 443 is the default port used by Hypertext Transfer Protocol Secure (HTTPS). If this port is blocked...

  • How to Compile PHP With SSL

    As a language designed explicitly for developing web applications, PHP comes with most of the tools web developers need out of the...

  • How to Proxy SSL

    When you enter a user name and password to log in to a website such as an email provider, your information is...

  • How Do I Create Secure Websites?

    To make sure your website is secure, you must use a web host that offers protection from viruses and spyware. The web...

  • How to Install HHA Sights on a Compound Bow

    HHA Sports archery sights are machined from solid aluminum and can be installed with just two screws to most popular compound bows....

  • Unix Domain Sockets Tutorial

    Unix provides a technology known as domain sockets to facilitate communication between different processes and even different applications. One of the oddities...

  • How to Use the Pound Key in Skype

    Skype is a voice over Internet protocol (VOiP) telephone service that allows you to make and receive calls from other Skype members...

  • How to Use Skype in Linux

    Skype makes it easy to install its software on computers running Linux. It offers installation packages for at least seven different Linux...

  • How to Show a System Configuration on a Sun E450 Server

    Comments. You May Also Like. Ford E450 Specs. Ford E450 Specs. The Ford E-450 commercial truck is available as a cutaway or...

  • Specifications for a US Caterpillar Diesel Engine Generator Set

    Specifications for a US Caterpillar Diesel Engine Generator Set. Caterpillar is a North American company that is one of the world's largest...

Related Ads

thumbnail
Featured