IIS 7 Binding Issue

I have a small network (DC=SBS 2008, Web server=W2K w/IIS & SQL Server 2000) that I'd like to add a 2nd Windows 2008 Server w/IIS 7 to.  The initial IIS install (ServerA.domain.com) has an app that we''ll need to run for another 6-8 months, along with our company's public website.  The app is accessed by offsite employees through IIS.

The new 2008 server (ServerB.domain.com) has an app for employees-only access, with 99% of them offsite.

To run both web servers concurrently, I had planned to add a non-standard port for serverB.

I have a Sonicwall TZ170 firewall that I have set for all http, port 80 traffic to go to serverA.domain.com's IP address.  I created a rule on the Sonicwall for http, port 8081 traffic to go to serverB.domain.com.

I set the binding on server B's default site to port 8081 and restarted IIS 7.

Here's where it comes unglued: The second I change the binding on serverB from 80 to anything else, I cannot access serverB's site (www.domain.com:8081 or, internally, serverB.domain.com:8081).

I am looking for help on fixing this problem and I'm open to alternative ideas on accomplishing the same task.
mbuttsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Kruger_monkeyCommented:
Internally does serverb have to be on 8081?  You can still have external traffic aimed at 8081 externally, but keep the internal port on 80.

Just add a rule to port forward all 8081 to serverb on 80.

If you do need to change it, what happens when you change it?  What error do you get.  Check your event logs for entries relating to the change.  It may be that 8081 is already in use somewhere on the system and that's what breaks it.

What happens if you set the port to 2080 (or any random number) do you get the same problem still.?
0
Andres PeralesCommented:
The better solution would be to use separate IP addresses, and keep everything on standard ports.  Do you have external public IP addresses available for use?
If so then, you would just assing servera.domain.com to listen one IP address and serverb.domain.com to listen on the other IP address.
Then on the sonic you would create a rule for the new external IP address traffic to go to the new server.
Or you could use Hostheaders for everything, and let DNS manage all of it.
0
mbuttsAuthor Commented:
Kruger_Monkey:
No, just picked that one since I use 8080 for accessing the firewall.  Running netstat -an shows that 8081 is not in use (when I've got the site bound to 80).  8081 shows up as listening when I change it to 8081.

For adding a rule to port forward, where are you referring to (firewall or IIS)?

Which logs are you referring to?

I tried a half dozen semi-random port numbers and get the same result: Internet Explorer cannot display the web page.
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

mbuttsAuthor Commented:
peralesa:

The sonicwall has a single WAN port.  I don't believe I can associate a 2nd public IP for ServerB.
0
Andres PeralesCommented:
If your ISP has issued you multiple IP addresses, and has given you the correct subnet mask you can assign those IP addresses to the Firewall and use them to assign services to your devices...
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
mbuttsAuthor Commented:
Peralesa,
Could you give me a bit more info on this?  I do have more static IPs & SNM from the ISP, but I don't understand how this would work.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.