diff --git a/web-server/apache/omnibus-apache-2.4.conf b/web-server/apache/omnibus-apache-2.4.conf
new file mode 100644
index 0000000..b14dd34
--- /dev/null
+++ b/web-server/apache/omnibus-apache-2.4.conf
@@ -0,0 +1,70 @@
+# This section is only needed if you want to redirect http traffic to https.
+# You can live without it but clients will have to type in https:// to reach gitlab.
+
+ ServerName git.example.com
+ ServerSignature Off
+
+ RewriteEngine on
+ RewriteCond %{HTTPS} !=on
+ RewriteRule .* https://%{SERVER_NAME}%{REQUEST_URI} [NE,R,L]
+
+
+
+ SSLEngine on
+ #strong encryption ciphers only
+ #see ciphers(1) http://www.openssl.org/docs/apps/ciphers.html
+ SSLCipherSuite SSLv3:TLSv1:+HIGH:!SSLv2:!MD5:!MEDIUM:!LOW:!EXP:!ADH:!eNULL:!aNULL
+ SSLCertificateFile /etc/apache2/ssl.crt/example.crt
+ SSLCertificateKeyFile /etc/apache2/ssl.key/example.plain.key
+ SSLCACertificateFile /etc/apache2/ssl.crt/sub.class2.server.ca.pem
+
+ ServerName git.example.com
+ ServerSignature Off
+
+ ProxyRequests Off
+ ProxyPreserveHost On
+
+ # Ensure that encoded slashes are not decoded but left in their encoded state.
+ # http://doc.gitlab.com/ce/api/projects.html#get-single-project
+ AllowEncodedSlashes NoDecode
+
+ # here we don't want to proxify the requests for the existing assets in gitlab's public directory
+ ProxyPassMatch ^(/[^/]+\.(html|png|ico|css|txt))$ !
+ ProxyPass /assets !
+
+ # here we "redirect" the requests for http://git.example.com/ to http://127.0.0.1:8080/
+ ProxyPass / http://127.0.0.1:8080/
+
+ # here we "rewrite" the redirections form unicorn for http://127.0.0.1:8080/ into http://git.example.com/
+ ProxyPassReverse / https://git.example.com/
+
+ DocumentRoot /opt/gitlab/embedded/service/gitlab-rails/public
+
+
+ Require all granted
+
+
+
+ Require all granted
+
+
+ #apache equivalent of nginx try files
+ # http://serverfault.com/questions/290784/what-is-apaches-equivalent-of-nginxs-try-files
+ # http://stackoverflow.com/questions/10954516/apache2-proxypass-for-rails-app-gitlab
+ RewriteEngine on
+ RewriteCond %{DOCUMENT_ROOT}/%{REQUEST_FILENAME} !-f
+ RewriteRule .* http://127.0.0.1:8080%{REQUEST_URI} [P,QSA]
+ RequestHeader set X_FORWARDED_PROTO 'https'
+
+ #Set up apache error documents, if back end goes down (i.e. 503 error) then a maintenance/deploy page is thrown up.
+ ErrorDocument 404 /404.html
+ ErrorDocument 422 /422.html
+ ErrorDocument 500 /500.html
+ ErrorDocument 503 /deploy.html
+
+ LogFormat "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b" common_forwarded
+ ErrorLog /var/log/apache2/gitlab_error.log
+ CustomLog /var/log/apache2/gitlab_forwarded.log common_forwarded
+ CustomLog /var/log/apache2/gitlab_access.log combined env=!dontlog
+ CustomLog /var/log/apache2/gitlab.log combined
+