Solved

Endian firewall, how to publish Multiple web server on 1 ip address

Posted on 2010-11-29
4
2,643 Views
Last Modified: 2012-05-10
Hi to All,
I'm moving from isa server to Endian firewall and I need to publish 4 diffresent web server hosted on 4 different machine but I have only one Public  IP address given to me from my provider.
How can I do that?
I know isa server uses host header to do this but i'm not able to find something similar with Endian.
If it's not possible can you please reccomend an open source firewall with this feature.
Thank you
Carlettus
0
Comment
Question by:carlettus
  • 2
  • 2
4 Comments
 
LVL 33

Accepted Solution

by:
Dave Howe earned 500 total points
ID: 34231382
That is a special feature of ISA, as normally what you are suggesting is a reverse proxy or load balancer task, rather than a firewall task (ISA is a strange beast, it is true)

On linux you would normally use the reverse-proxy mode of apache2 (with proxypreservehost turned on) to balance multiple sites using virtual hosting. Normally a hardened firewall specific distro will not have apache, but sometimes it will (for a web based admin tool) so it might be worth checking.  Otherwise you will want to pass 80 and possibly 443 traffic to a second box (running reverse proxy) so as to distribute it out from there.
0
 

Author Comment

by:carlettus
ID: 34236777
Dear DaveHowe,
thank you for your message, it's clear and the sulution you saggest is valid.
Thank you
Carlo
0
 

Author Closing Comment

by:carlettus
ID: 34236781
still have in my mind that ISA is a great firewall proxy
0
 
LVL 33

Expert Comment

by:Dave Howe
ID: 34237500
ISA is an indifferent firewall, but actually a very good proxy (and reverse proxy) indeed :)

Certainly you shouldn't put *anything* else in front of outlook web access, unless you actually want to be a textbook example of "how to configure OWA insecurely" :)
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now