<div dir="ltr">Use Apache to redirect to HTTPS. Done. This is what we do.</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, May 16, 2022 at 7:09 AM Damien Martins via Xymon <<a href="mailto:xymon@xymon.com">xymon@xymon.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><br><br><br>---------- Forwarded message ----------<br>From: Damien Martins <<a href="mailto:damien@makelofine.org" target="_blank">damien@makelofine.org</a>><br>To: Neil Simmonds <<a href="mailto:Neil.Simmonds@studio.co.uk" target="_blank">Neil.Simmonds@studio.co.uk</a>>, "<a href="mailto:xymon@xymon.com" target="_blank">xymon@xymon.com</a>" <<a href="mailto:xymon@xymon.com" target="_blank">xymon@xymon.com</a>><br>Cc: <br>Bcc: <br>Date: Mon, 16 May 2022 13:09:20 +0200<br>Subject: Re: [Xymon] HTTPS access to Xymon web pages<br>
<div>
<p>Hi Neil,</p>
<p>I think you can view it from different points of view:</p>
<p>-blocking network traffic that is not HTTPS (using AWS SG &
Net ACL)</p>
<p>-configure your webserver to allow only HTTPS</p>
<p>-configure your webserver to redirect/rewrite requests from HTTP
to HTTPS</p>
<p>I'm not familiar with Terabithia RPM, but documentation seems to
focus on Apache HTTP server. If this is the webserver you are
planning to use, this can be done easily using a permanent
redirect on virtualhost's root directory:</p>
<p>Redirect permanent / <a href="https://my_xymon_host.net/" target="_blank">https://my_xymon_host.net/</a> #Replace with the
right FQDN<br>
</p>
<p>As you can see, Xymon is not involved at any time, because
(AFAIK) this is just an engine working in background and
presenting the results via HTML content, through a third party
HTTP/HTTPS server.</p>
<p>Hope this help,<br>
Damien<br>
</p>
<div>Le 16/05/2022 à 12:52, Neil Simmonds a
écrit :<br>
</div>
<blockquote type="cite">
<div>
<p class="MsoNormal">Hi all, <u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">I’m currently preparing to create a new
Xymon server on AWS using the Terabithia RPM’s and I want to
only allow access to the Xymon pages over HTTPS. Has anyone
done this and can give me some advice?<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">I’m good with setting up the AWS security
groups etc and the local firewall I’m just not sure how I
Would setup Xymon to only show pages as HTTPS?<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><span style="font-size:10pt;font-family:Arial,sans-serif;color:navy">Kind
Regards,<u></u><u></u></span></p>
<p class="MsoNormal"><i><span style="font-size:9pt;font-family:Verdana,sans-serif;color:rgb(0,112,192)"><u></u> <u></u></span></i></p>
<p class="MsoNormal"><span style="font-size:9pt;font-family:Verdana,sans-serif;color:rgb(0,32,96)">Neil<b>.<u></u><u></u></b></span></p>
<p class="MsoNormal"><b><span style="font-size:9pt;font-family:Verdana,sans-serif;color:rgb(51,51,51)"><u></u> <u></u></span></b></p>
<p class="MsoNormal"><b><span style="font-size:8pt;font-family:Verdana,sans-serif;color:gray">Neil
Simmonds</span></b><span style="font-size:8pt;font-family:Verdana,sans-serif;color:purple"><u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:8pt;font-family:Verdana,sans-serif;color:gray">Senior
Platform & Middleware Engineer (Unix).
</span><span><u></u><u></u></span></p>
<p class="MsoNormal"><span><u></u> <u></u></span></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
Studio is a trading name of Studio Retail Ltd which is authorised
and regulated by the Financial Conduct Authority for consumer
credit and general insurance. Studio Retail Ltd are members of the
Finance and Leasing Association (FLA). Registered in England. No:
718151. Registered Office: Church Bridge House, Henry Street,
Accrington, BB5 4EE NOTE: This email and any information contained
within or attached in a separate file is confidential and intended
solely for the Individual to whom it is addressed. The information
or data included is solely for the purpose indicated or previously
agreed. Any information or data included with this e-mail remains
the property of Studio Retail Ltd and the recipient will refrain
from utilising the information for any purpose other than that
indicated and upon request will destroy the information and remove
it from their records. Any views or opinions presented are solely
those of the author and do not necessarily represent those of
Studio Retail Ltd. If you are not the intended recipient, be
advised that you have received this email in error and that any
use, dissemination, forwarding, printing, or copying of this email
is strictly prohibited. No warranties or assurances are made in
relation to the safety and content of this e-mail and any
attachments. No liability is accepted for any consequences arising
from it. Studio Retail Ltd reserves the right to monitor all
e-mail communications through its internal and external networks.
If you have received this email in error, please notify our
careline on +44(0) 371 200 0378.
<br>
<fieldset></fieldset>
<pre>_______________________________________________
Xymon mailing list
<a href="mailto:Xymon@xymon.com" target="_blank">Xymon@xymon.com</a>
<a href="http://lists.xymon.com/mailman/listinfo/xymon" target="_blank">http://lists.xymon.com/mailman/listinfo/xymon</a>
</pre>
</blockquote>
</div>
<br><br><br>---------- Forwarded message ----------<br>From: Damien Martins via Xymon <<a href="mailto:xymon@xymon.com" target="_blank">xymon@xymon.com</a>><br>To: Neil Simmonds <<a href="mailto:Neil.Simmonds@studio.co.uk" target="_blank">Neil.Simmonds@studio.co.uk</a>>, "<a href="mailto:xymon@xymon.com" target="_blank">xymon@xymon.com</a>" <<a href="mailto:xymon@xymon.com" target="_blank">xymon@xymon.com</a>><br>Cc: <br>Bcc: <br>Date: Mon, 16 May 2022 13:09:20 +0200<br>Subject: Re: [Xymon] HTTPS access to Xymon web pages<br>_______________________________________________<br>
Xymon mailing list<br>
<a href="mailto:Xymon@xymon.com" target="_blank">Xymon@xymon.com</a><br>
<a href="http://lists.xymon.com/mailman/listinfo/xymon" rel="noreferrer" target="_blank">http://lists.xymon.com/mailman/listinfo/xymon</a><br>
</blockquote></div>