Traveler using authenticating reverse proxy (Apache) in DMZ for iPhone/iPad

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)

Subject: Traveler using authenticating reverse proxy (Apache) in DMZ for iPhone/iPad

Feedback Type: Problem

Product Area: Notes Traveler

Technical Area: Functionality

Platform: Linux server

Release: 8.5.2

Reproducible: Always

We try to use an SSL connection to an Apache reverse proxy an do certificate authentication, before opening the connection to internal traveler server. Seems to work fine while connecting to the traveler web-site and configuring/downloading the iPhone configuration profile. Just at the moment when the iPhone send the first sync-request, which is entirely the question if there is really an MS-Active-Sync server, in terms of an HTTP OPTIONS request, the communication stops, and we get an error on the iPhone/iPad stating that the account couldn't be checked due to an error connecting to the server.
This happens only, if we use certificate authentication at the proxy, a plain SSL connection to the proxy without this works.

Anybody out there who realised such an scenario? Any suggestions on what to do at Apache reverse proxy to get this running? Apache sends the HTTP OPTIONS request with an 403 error (not allowed) back, while the traveler doesn't see this request.

Thank you.
Jens

Feedback number WEBB8S7D9Y created by ~Vera Nimnuvernivu on 03/08/2012

Status: Open
Comments: