Thank you for visiting the Rackspace Community
The The Community is live! Post new content or topics so our teams can assist.

Please contact your support team if you have a question or need assistance for any Rackspace products, services, or articles.

SSL Termination - How to set it up

Please have a CentOS cloud server setup with apache before continuing. If you need help with this please follow this guide

Step 1: Create a load balancer 

Name: Give it a name 

Region: Select the region, for this tutorial my server resides in LON so I will keep the load balancer in the same place.

Virtual IP: Accessible on the public Internet

Protocol: HTTP/ 80

Algorithm: Select from the following 

LEAST_CONNECTIONS The node with the lowest number of connections will receive requests.
RANDOM Back-end servers are selected at random.
ROUND_ROBIN Connections are routed to each of the back-end servers in turn.
WEIGHTED_LEAST_CONNECTIONS Each request will be assigned to a node based on the number of concurrent connections to the node and its weight.
WEIGHTED_ROUND_ROBIN A round robin algorithm, but with different proportions of traffic being directed to the back-end nodes. Weights must be defined as part of the load balancer's node configuration.

Click Add Cloud Servers and select your CentOS web server - then select Create Load balancer

Step 2: Configure the SSL

Select your load balancer from the list in your control panel and scroll to the bottom to see the Optional Features 

Click the pencil icon to edit the secure traffic feature (SSL termination)

add your Certificate file from your SSL vendor and Private key. If you choose to use your own self signed certificate these will be the .crt and .key files you created. 

Paste your .crt file in to the Certificate field. 

Paste your .key in the Private key field. 

It will look like the screenshot below.

Click Save SSL Configuration button

Common issues

If you see "service unavailable" when you test the web site in your browser or health monitoring on the load balancer is removing your web server node please check your firewall allows port 80 connections

Please also check your virtual host is configured to listen on port 80 

[Optional] Force traffic to redirect from http:// to https://

Add to your vhost on the web server the following:

RewriteEngine On

RewriteCond %{HTTP:X-Forwarded-Proto} !https

RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [L,R]