Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 207
  • Last Modified:

Forwarding web calls to a second server with a proxy

Hi There,

We're looking into setting up a server in a DMZ that will forward web site requests on to a second server inside our network.  The idea is that nothing's running on the server in the DMZ except this 'proxy' software, so that if the machine gets hacked, we wipe it clean with minimal recovery effort.  

What we want to happen is that a user conncects to the server in the DMZ, and the 'proxy' takes the web requests and forwards it to a web server inside the firewall.   The 'proxy' gets the response back from the web server and sends it back to the calling code.  We don't want to use URL redirection, because the idea is that only the 'proxy' server has permission to contact the web server on the internal network.  It's kinda like an anonymous proxy, but we don't care about hiding the IP Addresses of the connecting clients.  Right now we're looking at handling HTTP and HTTP/S calls

Ideally we're looking for something that runs on a Windows OS.  Is there any way to configure ISA Server or IIS to do this?  Otherwise we'll have to look into putting our ASP code on the DMZ server and connecting to the database inside our network.

Thanks.
0
afuchigami
Asked:
afuchigami
  • 2
1 Solution
 
fim32Commented:
hmm, apache has this functionality, and runs on windows...
0
 
afuchigamiAuthor Commented:
It turns out that the ISA Server might have this capability already (reverse proxy).  If so, then we'll go with this approach, as opposed to installing another piece of software (and potentially one more layer to break/get hacked).  I'll check it out and post back later.

Thanks.
0
 
afuchigamiAuthor Commented:
ISA Server (which is the evolution from Microsoft Proxy Server 2.0) does indeed support reverse proxying.  In ISA Server, it's called Web Publishing.

There's a good article at http://www.pcquest.com/cgi-bin/printer.asp?id=36168 that goes into more details, including an example of how to configure the ISA server.

I'm going to have this question closed out.

Thanks.

0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now