The CloudStack management server is a Java application which runs inside the Tomcat container. The default install configures the management Web UI service to listen on HTTP port 8080 on the primary interface.
It is a good practice to secure access to the CloudStack UI using SSL and can be done in more than one way…
- Enable SSL options in Tomcat container itself
- Use a reverse HTTP proxy server which supports SSL termination like Apache HTTP Server (with mod_proxy), Nginx or Apache Traffic Server
In this post, I will describe how to use the Apache HTTP server as a reverse proxy with SSL termination on CentOS.