I have configured my WSUS server on Windows Server 2012 R2, and I want all the communications between the server and the clients in HTTPS.
The problem is even after a proper IIS configuration with HTTPS only activated. The clients seem to try to communicate with both HTTP and HTTPS. More precisely BITS seems to cause this problem.
So is there anyone of you who have managed to fix this issue?
Thanks
Related
We are trying to reproduce the load of production IIS server in our development IIS server (to evaluate the impact of changes in database indexes)
I dont know is its possible to record the IIS traffic on production server to them send this traffic to development server.
Neither knows if this is the correct approach to acomplish this task
Can yo help me? Thanks
PD: We are using Windows Server 2008 SE
It sounds like you need reverse proxy with URL rewrite. When you build reverse proxy in production server, Production server will record requests and will traffic all requests to your development server.
So please install Application request routing and URL rewrite then create reverse proxy rule to traffic requests.
https://learn.microsoft.com/en-us/iis/extensions/url-rewrite-module/reverse-proxy-with-url-rewrite-v2-and-application-request-routing
I recently learnt that TLS negotiation is done by the Windows Server. But, in IIS we can bind SSL certificate for specific domain. Doesn't it means that IIS takes care of TLS offloading? Is this true, even when we configure IIS as reverse proxy?
Thanks in advance.
I have been debugging my software by connecting an iphone which is on the same network. Then I use fiddler on my desktop/server and set it to Allow Remote Connection (instructions here). I had this configuration working under Windows Server 2012, since I've upgraded my server to Server 2016 I am no longer able to get the phone to connect to the proxy server at xx.xx.xx.xx:8888. I checked "Allowed Apps" in the Windows Firewall but I don't see anything that looks relevant in there.
I am able to connect to the web server I have running on my server 2016 from my phone so they are able to talk to each other. I just can't access the fiddler proxy server.
Fiddler says it is online and appears to be working correctly.
I'm using Fiddler v4.6.20171.7553.
Is there some setting in windows firewall that might be blocking my proxy server connection?
I figured it out. I changed the firewall settings in Windows firewall to ask me if an app was going to be blocked. After restarting fiddler I was prompted and I said yes, allow this app to go through the firewall and then it started working.
the request from ihs is passed to plugin then to the application server and server received it.there is no cluster environment here.the server is up and running fine.But the response is not going back to plugin.how to troubleshoot?
(I would have made this a comment, but I don't have enough rep points).
You may need to engage IBM WebSphere Support to assist with this, but typically, for that type of issue, you would need to trace both sides of the connection (IHS plugin and WebSphere). Specifically,
Set LogLevel="Trace" in the plugin-cfg.xml
Set the following trace spec on the AppServer:
=info:com.ibm.ws.webcontainer=all:com.ibm.wsspi.webcontainer*=all:HTTPChannel=all:GenericBNF=all:TCPChannel=all
Reproducing the failure and reviewing the http_plugin.log and trace.log may provide some clues.
Do you receive some type of error in the browser? timeout? Is there anything (firewall, proxy) sitting between the IHS server and WebSphere AppServer?
It could be DNS problem with your WebSphere server. Can you please let us know about your IHS and plugin. Is it installed on same server where WebSphere is or on different server? If IHS and plugin is on different server just check that WebSphere server is able to resolve the IP address of IHS server using hostname. If not try to update host file with IP and hostname of your IHS server. It should work.
Does the client or the plugin not getting the response? Will that the request result in secure connection (i.e HTTPS/SSL...)?
The WAS server should extract most of the ports correctly if IHS/plugin is used in between. If using different webServer/load balancer(LB), the WAS server may not extract the listerning ports on the webServer/LB correctly.
You can take a look at the sample setting in PK55330 where a different web server is used in place of the IHS.
http://www-01.ibm.com/support/docview.wss?uid=swg1PK55330
Regards,
I am trying to connect to a Visual Studio server from a remote machine using Fiddler and HTTPS. I followed this tutorial (http://docs.telerik.com/fiddler/Configure-Fiddler/Tasks/UseFiddlerAsReverseProxy) which works perfectly for HTTP. When I moved my project to HTTPS, the connection stopped working. I have tried several solutions, including:
Proxying HTTPS traffic through Fiddler fails for remote clients?
http://lifelongprogrammer.blogspot.com.au/2014/04/using-fiddler-as-https-reverse-proxy.html
but haven't been able to get it to work. Can someone help?
You haven't explained what happens, but my guess is that your client is trying to do a HTTPS handshake with Fiddler, which is expecting HTTP because you didn't tell it to do anything else.
In Fiddler's QuickExec box, type
!listen 444 FiddlerMachineName
This will create a new HTTPS-accepting endpoint running at https://FiddlerMachineName:444 and Fiddler will perform a HTTPS handshake on all inbound connections. You can then use FiddlerScript to forward requests to the target service.