Use Apache to redirect to HTTPS. Done. This is what we do.
On Mon, May 16, 2022 at 7:09 AM Damien Martins via Xymon <xymon at xymon.com> wrote:
---------- Forwarded message ---------- From: Damien Martins <damien at makelofine.org> To: Neil Simmonds <Neil.Simmonds at studio.co.uk>, "xymon at xymon.com" < xymon at xymon.com> Cc: Bcc: Date: Mon, 16 May 2022 13:09:20 +0200 Subject: Re: [Xymon] HTTPS access to Xymon web pages
Hi Neil,
I think you can view it from different points of view:
-blocking network traffic that is not HTTPS (using AWS SG & Net ACL)
-configure your webserver to allow only HTTPS
-configure your webserver to redirect/rewrite requests from HTTP to HTTPS
I'm not familiar with Terabithia RPM, but documentation seems to focus on Apache HTTP server. If this is the webserver you are planning to use, this can be done easily using a permanent redirect on virtualhost's root directory:
Redirect permanent / https://my_xymon_host.net/ #Replace with the right FQDN
As you can see, Xymon is not involved at any time, because (AFAIK) this is just an engine working in background and presenting the results via HTML content, through a third party HTTP/HTTPS server.
Hope this help, Damien Le 16/05/2022 ? 12:52, Neil Simmonds a ?crit :
Hi all,
I?m currently preparing to create a new Xymon server on AWS using the Terabithia RPM?s and I want to only allow access to the Xymon pages over HTTPS. Has anyone done this and can give me some advice?
I?m good with setting up the AWS security groups etc and the local firewall I?m just not sure how I Would setup Xymon to only show pages as HTTPS?
Kind Regards,
Neil*.*
*Neil Simmonds*
Senior Platform & Middleware Engineer (Unix).
Studio is a trading name of Studio Retail Ltd which is authorised and regulated by the Financial Conduct Authority for consumer credit and general insurance. Studio Retail Ltd are members of the Finance and Leasing Association (FLA). Registered in England. No: 718151. Registered Office: Church Bridge House, Henry Street, Accrington, BB5 4EE NOTE: This email and any information contained within or attached in a separate file is confidential and intended solely for the Individual to whom it is addressed. The information or data included is solely for the purpose indicated or previously agreed. Any information or data included with this e-mail remains the property of Studio Retail Ltd and the recipient will refrain from utilising the information for any purpose other than that indicated and upon request will destroy the information and remove it from their records. Any views or opinions presented are solely those of the author and do not necessarily represent those of Studio Retail Ltd. If you are not the intended recipient, be advised that you have received this email in error and that any use, dissemination, forwarding, printing, or copying of this email is strictly prohibited. No warranties or assurances are made in relation to the safety and content of this e-mail and any attachments. No liability is accepted for any consequences arising from it. Studio Retail Ltd reserves the right to monitor all e-mail communications through its internal and external networks. If you have received this email in error, please notify our careline on +44(0) 371 200 0378.
Xymon mailing listXymon at xymon.comhttp://lists.xymon.com/mailman/listinfo/xymon
---------- Forwarded message ---------- From: Damien Martins via Xymon <xymon at xymon.com> To: Neil Simmonds <Neil.Simmonds at studio.co.uk>, "xymon at xymon.com" < xymon at xymon.com> Cc: Bcc: Date: Mon, 16 May 2022 13:09:20 +0200 Subject: Re: [Xymon] HTTPS access to Xymon web pages
Xymon mailing list Xymon at xymon.com http://lists.xymon.com/mailman/listinfo/xymon