for a while now we are using a public Apache2 server for proxying back into our internal network to kerio. This apache configuration actually works, when forwarding port 443 to kerio connect in our internal network.
Allow from all
Deny from all
ProxyPass / https://IPADDRESSOFFIREWALL:443/
ProxyPassReverse / https://IPADDRESSOFFIREWALL:443/
In order to make this a little bit quicker i tought of adding cacheing, so that CSS and JS can be cached. So i added this to the above virtualhost config:
CacheEnable disk /
# CacheDisable /static
This works on the login screen and it is quite faster now. But unfortunatley after being logged in, the browser keeps reloading the page.
Anyone has something like this running? Or may give a clue what to change?
- Pavel Dobry (Kerio)
What's wrong? Maybe the whole concept. Browsers already do cache some files.
But if you want to enter this dangerous field of MITM caching, make sure that certain requests MUST not be cached anytime: 302 redirects, all POST responses and requests and all responses which explicitly forbids caching. In other words, option "CacheIgnoreCacheControl On" must be OFF.
I changed the option, but it does not work either.
- i want to save our bandwidth, that's why we cache it
- i think it is more secure than having kerio directly on the internet
- we cleanup the cache from timt to time to prevent cache-poisoning
You obvisouly do not like the concept. Can you explain more? How do you do it?
[Updated on: Thu, 16 September 2010 12:15]
Kerio discussion forums are intended for open communication between forum
members and may contain information and material posted by members which may
be useful in learning about Kerio products. The discussion forums are not
intended to provide technical support for any specific product. Any
information implied or expressed in the discussion forums is that of the
posting member. Kerio is in no way responsible for the information posted in
the forums, or its accuracy. Kerio employees may participate in the
discussions, but their postings do not represent an offical position of the
company on any issues raised or discussed. Kerio reserves the right to
monitor and maintain the forums to promote free and accurate exchange of