How to disable non-ssl connection on Apache 2.2

Question

I am using Apache 2.2 on 12.04. I have activated ssl connection with a self-signed certificate which works fine, but now I'd like to disable any non-ssl connection.

I used a2dissite default but the server is still accessible on port 80 even after restarting the server.

Please help me on this.

score 14 · Answer 1 · edited Sep 07 '12 at 10:17

14

I finally have it working:

In addition to disabling the default page with: a2dissite default, I edited /etc/apache2/ports.conf and commented the following lines:

NameVirtualHost *:80  
Listen 80

edited Sep 07 '12 at 10:17

answered Sep 07 '12 at 10:13

user87954

251

I had a snap application listening on port 80. This solution stopped apache from listening on port 80 so that requests could go through to the app. – Edwin Chua Jan 21 '21 at 13:47

pa4080 · Answer 2 · 2023-03-24T10:23:26.893

A better idea is to keep "non-ssl connection" (http), but permanently redirected to your SSL Virtual Host (https). In this case the .conf file could look like:

<VirtualHost *:80>
    ServerName www.example.com
    ServerAdmin admin@example.com

    # Redirect Requests to SSL
    Redirect permanent &quot;/&quot; &quot;https://www.example.com/&quot;

    ErrorLog ${APACHE_LOG_DIR}/example.com.error.log
    CustomLog ${APACHE_LOG_DIR}/example.com.access.log combined


</VirtualHost>
<IfModule mod_ssl.c>
    &lt;VirtualHost _default_:443&gt;

            ServerName www.example.com
            ServerAdmin admin@example.com

            DocumentRoot /var/www/html/www.example.com

            ErrorLog ${APACHE_LOG_DIR}/example.com.error.log
            CustomLog ${APACHE_LOG_DIR}/example.com.access.log combined

            SSLEngine on

            # other configuration directives...

    &lt;/VirtualHost&gt;


</IfModule>

How to disable non-ssl connection on Apache 2.2

2 Answers2

Linked