The underlying Apache httpd server can still be IBM HTTP Server or you can provide your own preferred Apache 2.2.x server with support for mod_ssl and mod_proxy. Thankfully using mod_proxy is a well defined problem and you can find many useful sources of information on the internet. Apache's proxy features are divided into several modules in addition to mod_proxy: mod_proxy_http, mod_proxy_ftp and mod_proxy_connect. The ability to contact remote servers using the SSL/TLS protocol is provided by the SSLProxy* directives of mod_ssl.
This is perhaps most useful in a surrogate (aka, http accelerator, reverse proxy) configuration. Simply configure Squid with a normal reverse proxy configuration using port 443 and SSL certificate details on an https_port line. Intercepting direct TLS connections. It is possible to intercept an HTTPS connection to an origin server at Squid's ... Mar 15, 2020 · By allowing the browser to retrieve SSL certificate information from the server instead of going back to the CA's server for each request, it can achieve both of these results. It is quite uncommon to simultaneously decrease page load times and increase user security, however enabling OCSP stapling makes it easy.