Solved

Forwarding web calls to a second server with a proxy

Posted on 2004-03-31
5
197 Views
Last Modified: 2010-04-09
Hi There,

We're looking into setting up a server in a DMZ that will forward web site requests on to a second server inside our network.  The idea is that nothing's running on the server in the DMZ except this 'proxy' software, so that if the machine gets hacked, we wipe it clean with minimal recovery effort.  

What we want to happen is that a user conncects to the server in the DMZ, and the 'proxy' takes the web requests and forwards it to a web server inside the firewall.   The 'proxy' gets the response back from the web server and sends it back to the calling code.  We don't want to use URL redirection, because the idea is that only the 'proxy' server has permission to contact the web server on the internal network.  It's kinda like an anonymous proxy, but we don't care about hiding the IP Addresses of the connecting clients.  Right now we're looking at handling HTTP and HTTP/S calls

Ideally we're looking for something that runs on a Windows OS.  Is there any way to configure ISA Server or IIS to do this?  Otherwise we'll have to look into putting our ASP code on the DMZ server and connecting to the database inside our network.

Thanks.
0
Comment
Question by:afuchigami
  • 2
5 Comments
 
LVL 7

Expert Comment

by:fim32
Comment Utility
hmm, apache has this functionality, and runs on windows...
0
 

Author Comment

by:afuchigami
Comment Utility
It turns out that the ISA Server might have this capability already (reverse proxy).  If so, then we'll go with this approach, as opposed to installing another piece of software (and potentially one more layer to break/get hacked).  I'll check it out and post back later.

Thanks.
0
 

Accepted Solution

by:
afuchigami earned 0 total points
Comment Utility
ISA Server (which is the evolution from Microsoft Proxy Server 2.0) does indeed support reverse proxying.  In ISA Server, it's called Web Publishing.

There's a good article at http://www.pcquest.com/cgi-bin/printer.asp?id=36168 that goes into more details, including an example of how to configure the ISA server.

I'm going to have this question closed out.

Thanks.

0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now