Google Cloud Platform (GCP) Can’t Load Balance HTTPS Across Zones

Google’s HTTP(S) load balancer has cross-region load balancing. But that’s not a useful case for me (and tons of people I’d argue) because I have servers in unmanaged groups that need low latency communication among them. So I need to load balance unmanaged instance groups across ZONES e.g. zone-a unmanaged group, zone-b unmanaged group, and zone-c unmanaged group. What am I missing? Is this VERY basic use case not supported by Google?

BTW, the servers are in unmanaged groups because they MUST have slightly different configurations. Please don’t tell me it’s time to move to AWS…sigh

Forçar HTTPS por um endereço URL e outro endereço URL não forçar HTTPS

Na zona DNS, tenho 2 uRLs configurados, a primeira para acesso público na web, o segundo para comunicação webservice, preciso que fique desse modo pois não guarda cache/DNS.

O problema é que, se deixo as duas regras, ao acessar a segunda URL, devido a primeira regra, a URL é alterada para a URL principal (com https), mas quando comento a primeira regra, o segundo endereço funciona normalmente, mas a URL pública não funciona.

RewriteEngine On RewriteBase / RewriteCond %{SERVER_PORT} 80 RewriteCond %{HTTP:X-Forwarded-Proto} !https  ## Com SSL para uso público na web RewriteRule ^(.*)$$  1 [R,L]  ## Acessar o mesmo site, mas sem SSL para o webservice RewriteRule ^$$  1 [R] 

I have 2 domains on IIS 10 and have installed 2 separate ssls yet I can not access the https version of either domain

I have gone through and requested the CCR and then added the SSL, grabbed the private key and then reinstalled them into IIS then I also added each SSL to be trusted as well in the MMC.

What am I doing wrong?

Fail2ban: Ban ip on all ports exept HTTP[S] (or group of ports)

My server currrently has very strict fail2ban rules, which permanently and persistently ban any ip that fails to login once on all ports. This might seem overkill, but most ports are “private” ports (meaning only I should access them).

Since my server runs a public website, ips should not be banned on HTTP & HTTPS, I also have setup an web interface to unban my ip, in case I lock myself out, which I then need to be able to access.

I don’t have much expirence with firewalls & iptables and am currently using action.d/iptables-allports.conf with persistent bans.

How can I configure an action to ban the ip on all ports except for “public ports” or ban the ip on all “private ports” (given a static list of public / private ports)?

Thanks in advance. -Minding

Decrypting response, using fsockopen to talk to REST API on https

When using fsockopen to build my headers and send a request to a REST API, the response appears to be encrypted. Not sure how to best proceed

I started using curl to generate the request, but I just couldn’t get the headers right, and the API wasn’t responding. Eventually I used postman to build a query that returned a valid response.

It looked like: GET /my-path/somefunction?page=2& per_page=10 HTTP/1.1 Host: Authorization: mykey User-Agent: PostmanRuntime/7.13.0 Accept: / Cache-Control: no-cache Postman-Token: fc66e2d0-0199-46ce-9866-88ff49d2d10d,9ccfacf6-ebf0-4f6b-a089-b9dd65587bb4 accept-encoding: gzip, deflate Connection: keep-alive cache-control: no-cache

I decided to use fsockopen to generate the headers exactly like the working headers in postman, as curl wouldn’t work, and I had no way to see the headers curl was sending. The problem is the data coming back is gobbledigook – I’m guessing I am seeing encrypted SSL data coming back?

$  fp = fsockopen('ssl://' . $  host, $  port, $  errno,$  errstr,10); fputs($  fp, "GET $  path HTTP/1.1\r\n"); fputs($  fp, "Host: $  host\r\n"); fputs($  fp, "Authorization: $  apiKey\r\n"); //fputs($  fp, "User-Agent: PostmanRuntime/7.13.0\r\n"); fputs($  fp, "Accept: */*\r\n"); fputs($  fp, "Cache-Control: no-cache\r\n"); //fputs($  fp, "Postman-Token: fc66e2d0-0199-46ce-9866-88ff49d2d10d,53b431ae-9046-4546-9bb4-0a0c6fdc54c7\r\n"); //fputs($  fp, "accept-encoding: gzip, deflate\r\n"); fputs($  fp, "Connection: keep-alive\r\n"); fputs($  fp, "cache-control: no-cache\r\n\r\n"); //fputs($  fp, $  data);  $  result = '';  while(!feof($  fp)) {     // receive the results of the request     $  result .= fgets($  fp, 128); } echo $  result; 

I’m wondering how I can decrypt the data I get back?

HTTPS works only with Load Balancer DNS – AWS

I have a problem with HTTPS configuration on AWS hope you can help.

What I already have:

  1. EC2 – with Elastic IP, open ports screen shot with security group.
  2. Load Balancer attached to EC2 (with same security group as EC2).
  3. SSL certificate from AWS (ACM)
  4. Domain – “Transferred”, From another service (not amazon) using just Elastic IP for DNS configurations. (Can this be the problem?)
  5. Route53 – configured for Domain with AWS (SSL) and for IPV4 address I am using alias for Load Balancer.

How it works:

  • EC2: Elastic IP and public DNS (are working only for http) as it should work I guess.
  • LOAD BALANCER: Works and gives HTTPS and HTTP access just from DNS name.
  • Route53(domain) – Works just for HTTP, every HTTPS request returns ERR_CONNECTION_REFUSED

Is it going to fix the problem if I will change EC2’s elastic ip in Domain DNS with Load Balancer’s public DNS name?

Excessão .htaccess redirecionamento de http para https

Olá, a minha dúvida é a seguinte:

Quero que todo o site seja redirecionado para .https, porém uma única pagina que está rodando um iframe .http não quero que seja redirecionada para https.

Com adicionar essa exceção? Tentei da seguinte forma:

RewriteEngine On      RewriteCond %{HTTPS} on     RewriteCond $  {REQUEST_URI} ^/medidorhtml?$       RewriteRule ^(.*)$$  1 [R,L] 

Chrome is opening Local Host site with HTTPS

In a SharePoint Development Environment whose server name is “dev”, the site is deployed on the port 80.

I am accessing the site in Internet Explorer using dev:80 then internet explorer automatically creates URL : http://dev/pages/

when I try http://dev:80 in Chrome, it generates HTTPS i.e. https://dev/ and then it shows this site can’t be reached

However I can access the site in Chrome using http://localhost/ but there are some problems being generated if I use Localhost/ because it keeps generating HTTPS for the files linked in the Project

For Example I am currently facing the following problem: SharePoint DateTimeControl styling is getting out in google chrome

Please help me resolve this Thanks