So I've installed (splunk) to monitor and search my log files, which is a great tool. Except that going from a Trial License to a Free License has removed all user/login accounts and enabled splunk to be open to the world. Not Cool.
Absent paying splunk for an Enterprise License, one of the only possible ways to block outside traffic is to setup a proxy filter on my box to restrict access. Now I looked into this issue and discovered (httpd-vhosts.conf) under /usr/local/etc/apache22/extra/ and added:
I also uncommented (Include etc/apache22/extra/httpd-vhosts.conf) in the /usr/local/etc/apache22/httpd.conf and reloaded Apache. After doing that, I got the following error:
So it would appear that my Apache setup is missing the ability to understand ProxyPass and most likely ProxyPassReverse. So my question is, how do I go about updating my system to support these two functions in order to filter my Splunk URL?
Thanks,
Alby
Absent paying splunk for an Enterprise License, one of the only possible ways to block outside traffic is to setup a proxy filter on my box to restrict access. Now I looked into this issue and discovered (httpd-vhosts.conf) under /usr/local/etc/apache22/extra/ and added:
Code:
<VirtualHost *:80>
# do proxied Splunk
ProxyPass / http://server_name:8000/
ProxyPassReverse / http://server_name:8000/
</VirtualHost>I also uncommented (Include etc/apache22/extra/httpd-vhosts.conf) in the /usr/local/etc/apache22/httpd.conf and reloaded Apache. After doing that, I got the following error:
Code:
Performing sanity check on apache22 configuration:
Syntax error on line 46 of /usr/local/etc/apache22/extra/httpd-vhosts.conf:
Invalid command 'ProxyPass', perhaps misspelled or defined by a module not included in the server configurationSo it would appear that my Apache setup is missing the ability to understand ProxyPass and most likely ProxyPassReverse. So my question is, how do I go about updating my system to support these two functions in order to filter my Splunk URL?
Thanks,
Alby
