Problems with Apache proxy with Let's encrypt

I am experiencing problems accessing a site with Apache Proxy Server with SSL access.


Internet → (https) → Apache Proxy → (http) → Joomla (Apache)
Display does not work properly.

Internet → (http) → Apache Proxy → (http) → Joomla (Apache)
Representation works correctly.

VirtualHost Proxy without SSL (
<VirtualHost *:80>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined

ProxyPreserveHost On
	ProxyRequests Off
	ProxyVia full
	ProxyPass /
	ProxyPassReverse /

VirtualHost Proxy with SSL

<VirtualHost *:443>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined

ProxyPreserveHost On
ProxyPass /
ProxyPassReverse /

SSLCertificateFile /etc/letsencrypt/live/
SSLCertificateKeyFile /etc/letsencrypt/live/
Include /etc/letsencrypt/options-ssl-apache.conf

Apache log see attachment
LogApacheMitOhneSSL-EN.txt (10.3 KB)

Does anyone have any ideas to help solve this?

Thanks in advance for your efforts.

Can you explain what the problem is? I see many HTTP 200 OK responses in your log for both domain names. I also successfully connect to both of your domain names.


Your certificate is not valid for the test subdomain.


It is not. But, in the log they used test domain with http and robert domain (*) for https. They both work like that but I agree the test domain is not in the cert so would show errors if tried with https.

(*) The first post shows VirtualHost for oc domain but the log is robert for https. I see both oc and robert working fine and both those names are in the cert.


Yes. I therefore only use with http.

Yes, the log is different. Sorry for the confusion. I first tested the configuration with and extracted the log. But to continue using, I set up as domain name for https. It behaves exactly the same.

So testing is now possible with


But what is the problem? Please explain.

And, did you mean to type oc rather than nc? Because I do see a problem with the nc domain in that it redirects to HTTP from HTTPS.

curl -I
HTTP/1.1 302 Found
Server: Apache/2.4.41 (Ubuntu)

Many http headers omitted for readability


This site has mixed content (CSS), which is blocked by the browser.


With the display of the website of the internal server works.

With encryption the display of the website of the internal server does NOT work correctly.

What does that do?
And why are they only used on the HTTP server block?

And just for overall neatness, you can remove the :80 form these:


I can't relate to that. Wouldn't the log be identical then?
Thanks for the answer.

As osiris pointed out you have mixed content. Your website can be connected with HTTPS just fine. That means your certificates are fine. But take a look at this site


Please check your log yourself: in one of the two parts there are requests for .css files visible while in the other part there are none. They are blocked by the client, so no, the logs wouldn't be identical.


Thank you Osiris. I now understand that this is a source of error.

Do you have any idea how I can fix it? And why this error does not occur without encryption (http)?

1 Like

Change http:// in your code to https://. Note that HTML/server side scripting is not the expertise of this Community :wink:

Because without HTTPS there is no mixed content possible? Please search the meaning of "mixed content" if you don't know what it is and educate yourself :slight_smile:


The WhyNoPadlock link I provided earlier describes exactly what changes are needed. Even shows the line numbers.


Thank you Osiris. You have helped my understanding a lot. In this respect I am now closer to a solution :wink:


Thank you Mike McQ. This website is really a help.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.