[cueshot]

Hi all,

Tech Notes: PHP 5, Apache 2.2

Computer A:

• Apache server
• PHP engine
• On a LAN/Behind firewall

Computer B

• Client
• Configured as proxy server
• On a different LAN than Computer A/Behind firewall

Computer C

• Server
• On same LAN as Computer B/Behind firewall and not open to public web

Computer B accesses web application on Computer A via browser establishing a HTTPS connection.

User on Computer B clicks a submit button on a page in the web application. PHP on Computer A runs and inits a cURL object. cURL is given Computer B's IP to be used as proxy. cURL executes and sends HTTP request. The destination of HTTP request is Computer C.

Intent is to keep the HTTP request from being sent out across the insecure web and instead to send it via Computer B with Computer B acting as a proxy.

Request Track: Computer A (source of new HTTP request) -> Computer B (as proxy) -> Computer C

Response Track: Computer C -> Computer B (as proxy) -> Computer A (finish processing based on response)

Entire bi-directional communication must stay on the LAN's, behind the firewalls, and never touch the web.

Is there a way I can use the HTTPS connection between Computer B and Computer A to send the new HTTP request to keep it secure and away from the web, or will there have to be a tunnel connection (SSH or the like) from Computer A to Computer B with the tunnel being used to send the new HTTP request?

Or if I execute the cURL object and send the new HTTP request without a tunnel and without any fancy work related to the HTTPS connection, will it just automagically use the HTTPS connection currently established between Computer B and Computer A thus keeping the request secure, on the LAN's, and away from the web?

I would appreciate any help with this complex scenario.

Thanks