We have Jira and Confluence server version installed on the same sever. With the help of Apache using as reverse proxy both the application is accessible on the user friendly URL with self signed certificate as it is our stagging environment.
Here the concern is request is directly hitting the physical server and it is a security concern as per our network security.
Is there any way to pass the request through a virtual server and then it hits on the physical server(When we ping the jira url, virtual server IP should be found and not the original IP), with the help of Apache as reverse proxy.
Any comment is most welcomed!!
Thanks and Regards,
Most of us get our Atlassian stacks working, then put the Apache in front of them, and simply firewall the application server off from the rest of the world. My Jira server is firewalled to the point where it only listens to ssh on the local network, talks to Apache on one other machine on the network and a database server on another local machine. All other networking is firewalled completely.
That will stop the security problem of people hitting the service direct, as they'll get nothing back from it.
Redirecting them is possibly more complex, but mostly possible. If you edit the hosts file on the Jira server so that it uses the right names for itself and the proxy server without going to DNS, then you can poison your DNS - tell it to resolve the name of the Jira server is the ip address of the proxy. This won't (and can't) stop people using the raw ip address of the jira server (that may be possible with routing in your network, but I've never tried it), so you should still do the firewall thing.
I need your help.
Earlier i had installed apache on the same server where Jira and Confluence application is installed and both jira and confluence was accessible with proxied URL.
But due to some network security constraint, installed apache on different server and configured the same way and when hit the proxied URL it is giving error "Server can not be reached".
Could please suggest any possible way how to resolve the issue.
Thanks for your help.
That usually means that the proxy server cannot reach the services you have set up to be proxied.
It's trying to ask Jira and Confluence for data, but simply cannot reach them on the proxy urls you have given it.
Are the urls correct? Are they firewalled off from the proxy? Try a simple wget/curl/telnet to the services from the proxy server and check the error response, it's usually a bit more informative than "server cannot be reached"
Badges are a great way to show off community activity, whether you’re a newbie or a Champion.Learn more
Hi Atlassian Community! My name is Shana, and I’m on the Jira Software team. One of the many reasons this Community exists is to connect you to others on similar product journeys or with comparabl...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs