Apache HTTP Server Version 2.4 (original) (raw)
Apache Module mod_proxy_connect
Available Languages: en | fr | ja
| Description: | mod_proxy extension forCONNECT request handling |
|---|---|
| Status: | Extension |
| Module Identifier: | proxy_connect_module |
| Source File: | mod_proxy_connect.c |
Summary
This module requires the service of [mod_proxy](../mod/mod%5Fproxy.html). It provides support for the CONNECT HTTP method. This method is mainly used to tunnel SSL requests through proxy servers.
Thus, in order to get the ability of handling CONNECT requests, [mod_proxy](../mod/mod%5Fproxy.html) and[mod_proxy_connect](../mod/mod%5Fproxy%5Fconnect.html) have to be present in the server.
CONNECT is also used when the server needs to send an HTTPS request through a forward proxy. In this case the server acts as a CONNECT client. This functionality is part of [mod_proxy](../mod/mod%5Fproxy.html) and[mod_proxy_connect](../mod/mod%5Fproxy%5Fconnect.html) is not needed in this case.
Warning
Do not enable proxying until you have secured your server. Open proxy servers are dangerous both to your network and to the Internet at large.
AllowCONNECT Directive
| Description: | Ports that are allowed to CONNECT through the proxy |
|---|---|
| Syntax: | AllowCONNECT port[-port] [port[-port]] ... |
| Default: | AllowCONNECT 443 563 |
| Context: | server config, virtual host |
| Status: | Extension |
| Module: | mod_proxy_connect |
| Compatibility: | Moved from mod_proxy in Apache 2.3.5. Port ranges available since Apache 2.3.7. |
The AllowCONNECT directive specifies a list of port numbers or ranges to which the proxy CONNECT method may connect. Today's browsers use this method when a https connection is requested and proxy tunneling over HTTP is in effect.
By default, only the default https port (443) and the default snews port (563) are enabled. Use theAllowCONNECT directive to override this default and allow connections to the listed ports only.
Comments
Notice:
This is not a Q&A section. Comments placed here should be pointed towards suggestions on improving the documentation or server, and may be removed by our moderators if they are either implemented or considered invalid/off-topic. Questions on how to manage the Apache HTTP Server should be directed at either our IRC channel, #httpd, on Libera.chat, or sent to our mailing lists.