]> git.ipfire.org Git - thirdparty/apache/httpd.git/commitdiff
* docs/manual/mod/mod_proxy.xml: Add clarifications for ProxyRemote and
authorJoe Orton <jorton@apache.org>
Tue, 23 Jun 2026 15:42:18 +0000 (15:42 +0000)
committerJoe Orton <jorton@apache.org>
Tue, 23 Jun 2026 15:42:18 +0000 (15:42 +0000)
  <Proxy> containers.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1935589 13f79535-47bb-0310-9956-ffa450edef68

docs/manual/mod/mod_proxy.xml

index 866e85809bb96d53e08346c124c435fe79249e35..f7a34e62036f3cfe78269efbc9ae8b64643dc102 100644 (file)
@@ -514,7 +514,7 @@ ProxyPass "/apps"     "http://127"
 
 <usage>
     <p>Directives placed in <directive type="section">Proxy</directive>
-    sections apply only to matching proxied content.  Shell-style wildcards are
+    sections apply only to matching proxied content using a simple string prefix match against the URL.  Shell-style wildcards are also
     allowed.</p>
 
     <p>For example, the following will allow only hosts in
@@ -734,6 +734,13 @@ ProxyRemote ftp http://ftpproxy.mydomain:8080
     authentication challenge.  The <a
     href="mod_proxy_http.html#env">Proxy-Chain-Auth</a> environment
     variable has no effect if this argument is used.</p>
+    
+    <note><title>DNS resolution and forward proxies</title>
+    <p>When a forward (remote) proxy is configured, DNS resolution of
+    the origin/backend hostname is only performed on the forward proxy.
+    Any <directive module="mod_proxy">ProxyBlock</directive> rules
+    which restrict access to specific IP addresses must be configured
+    at the forward proxy.</p></note>
 
 </usage>
 </directivesynopsis>