Link to home
Start Free TrialLog in
Avatar of mbath20110
mbath20110Flag for United States of America

asked on

WatchGuard Firewall - How can I point to another web server on my network.


Zero expertise with my WatchGuard firewall other than being the onsite monkey while the WatchGuard tech walked me thru installing it and setting it up.

Ok Ok. Maybe not giving myself enough credit.  I DO know how to get into Policy Mgr. and do the basics.

To my question.  Running Outlook Webaccess on my Exchange 2003 server.  If I or my users want to chech their webmail they go: 65.154.98.141\EXCHANGE (where EXCHANGE in the actual DNS name of my Exchange server).

But let's say I want to play and I have IIS running on another server, say, APPLICATIONS.

How do I configure my Firewall so I can go 65.154.98.141\APPLICATIONS and see any test websites that I'm running on APPLICATIONS.

I'm using NAT on the firewall to translate the external IP to the internal IP of EXCHANGE but it seems that it will only let me do one; in other words I can't add a second NAT for APPLICATIONS.

Any thoughts???
Avatar of rliu1112
rliu1112
here is one way (easiest I think...) lets just use the same IP address...

first, I am assuming that your web server is called APPLICATIONS. and your test web sites are located on APPLICATIONS as subfolders or files under "wwwroot" folder of your IIS?

on your firewall, use NAT to map the TCP port 80 or the external IP (65.154.98.141) to the internal address of your web server (APPLICATIONS). so now all HTML traffic will be directed to the APPLICATIONS machine's "wwwroot" folder (given that it is an IIS machine).

so to test, place a sample web page into the wwwroot folder and lets call it default.htm for now, then use IE and browse to http://65.154.98.141/default.htm and you should see that web page

now, I don't really know how your test sites are created or stored... but its generally created as sub folders under the wwwroot folder. So lets say that I have a test site called TESTSITE01. it would be physically located on \\APPLICATIONS\wwwroot\testsite01.

Then use IE and browse to http://65.154.98.141/testsite01/yourwebpage.htm

I hope this helps...
Avatar of mbath20110
mbath20110
Flag of United States of America image

ASKER


Thanks for respsonding RLiu,

I think you've got me on the right track but the sticking point is, I want to preserve the IP NAT to my Exchange server (so my users can keep getting OWA).

So to refine my question, if I want to leave in place, 65.154.98.141/EXCHANGE, how do I add 65.154.98.141/APPLICATIONS, which is where, as you correctly stated, my test website would be?

Or, is this even something that should (can) be done via the firewall?  Can I do some internal mapping or sharing of folders on Applications that points to Exchange?

And maybe my larger question is,  is what I'm proposing really proper network design?  Should I really be hosting websites on different machines in my network?  If I've already got IIS running on my Exchange server then that's where any and all other websites (internal or external) should be located.

Thanks again.
ASKER CERTIFIED SOLUTION
Avatar of rliu1112
rliu1112
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial