I did a little write-up on how I achieved reverse proxy nirvana with IIS a while ago now. It made things a lot nicer for me. Like, a lot.
I have a few friends/colleagues/acquaintances who run Apache (I run IIS in my homelab environment, that’s the only reason I went with it), so I figured I’d look into how I can help them do the same thing (only a little different).
Installing the proxy components
Firstly, you need to install the components to allow Apache to actually route things. It’s fairly straightforward to do, and simply requires you have root access to the shell on your server.
There are two main components that you need:
libapache2-mod-proxy-html and libxml2-dev.
Install them with:
sudo apt-get install -y libapache2-mod-proxy-html libxml2-devYou’ll then need to activate them. ‘a2enmod’ comes into play here
sudo a2enmod proxy
sudo a2enmod proxy_http
sudo a2enmod proxy_ajp
sudo a2enmod rewrite
sudo a2enmod deflate
sudo a2enmod headers
sudo a2enmod proxy_balancer
sudo a2enmod proxy_connect
sudo a2enmod proxy_htmlConfiguring the proxy settings
With the modules activated we can start to actually configure the reverse proxy settings.
These settings are done in the config file for your ‘virtualhost’. (which is what defines each site that Apache is serving). Usually these are in /etc/apache2/sites-enabled – the files in there should simply be symlinks to their counterparts in /etc/apache2/sites-available.
Pick the config file for the site you want to set up sub-proxy for. Edit it using:sudo nano -w /etc/apache2/sites-enabled/%site-config.conf%
All the config needs to be put inside the virtualhost section of the config – inside the section enclosed with <VirtualHost>content<VirtualHost /> tags.
Add this line below the DocumentRoot entry (this tells it to pass the actual source through the reverse proxy to the proxied application):
ProxyPreserveHost OnIt can be a good idea to add comments to things that you edit so you can remember why you edited it, if you’re anything like me. Remember to put a “#” in front of it to mark it as a comment instead of actual code.
Near the bottom of the config, I put the actual ‘proxypass’ entries into place (just before the final virtualhost close tag). They work elsewhere in the config – I just find it easier to put custom config near the bottom of config files where possible, so it’s consistently easy to find.
Add in entries for each thing you want to proxy. Make sure the item you are proxying has a baseurl configured – that way it doesn’t panic when the url passed to it is ‘application/base/argument’, rather than the expected ‘application/argument’.
# Sonarr
ProxyPass /sonarr http://internal.ip.of.host:8989/sonarr
ProxyPassReverse /sonarr http://internal.ip.of.host:8989/sonarr
# Radarr
ProxyPass /radarr http://internal.ip.of.host:7878/radarr
ProxyPassReverse /radarr http://internal.ip.of.host:7878/radarrSave the config using CTRL+O (‘o’ for ‘overwrite’ with nano)
Answer ‘yes’ if it prompts.
Activating the changes
To activate the new proxy settings, restart apache.
service apache2 restartThis should allow you to access the software on “http://server/sonarr”, “http://server/radarr” etc – rather than remembering the port for each application, and forwarding ports for each as well. It also means you can set up an SSL connection to secure it – but that’s a topic for another writeup (I use Certbot for it).
