Solved

Web Relay / Proxy

Posted on 2012-03-30
7
466 Views
Last Modified: 2012-04-05
Hello All,

I have a scenario that I am trying to provide a solution for - Users access their email (Lotus Notes) via a Citrix infrastructure, which consists of over 100 servers.  They have a Finance server which sits behind a firewall in a DMZ which hosts a website, they receive emails that contain a URL to this website, when they click this link it opens IE within the Citrix session (with the Citrix server IP Address), and at present this does not work as this port 80 or 443 traffic is blocked by the firewall.

Now we do not want to open up the firewall to the hundreds of Citrix server IP addresses, so what I would prefer is to create some sort of web relay, so that we only have to open up the firewall for the relay server rather than the entire Citrix server estate. Is this possible?

Cheers

V.
0
Comment
Question by:vision_on
  • 3
  • 3
7 Comments
 
LVL 3

Expert Comment

by:eappiah
ID: 37786068
You could setup a reverse proxy for http/https and only open up communication in the firewall for that server to the dmz server.

Then the citrix servers would access that 1 server.
I'd suggest Apache or IIS for this solution.
0
 
LVL 1

Author Comment

by:vision_on
ID: 37786246
Hello eappiah,

Thanks for your response.  If I were to use IIS to create the reverse proxy, what version of IIS would be required?  I think I only have IIS6 available...

Also would this use the IIS Add-in "Application Request Routing"?

Cheers

V.
0
 
LVL 3

Accepted Solution

by:
eappiah earned 500 total points
ID: 37786278
I believe the IIS6 does not have this feature inbuilt or you need some 3rd party modules(?!).
Think (as in not sure) you needed a Microsoft ISA Server to get this function.

Only tested this on IIS7 following some guide I googled but I never actully used it for more then in a very small test case.

I only have "real" experience with Apache (mostly on Linux but also windows , it's the same really).
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 1

Author Comment

by:vision_on
ID: 37786325
Yeah thats the conclusion that I have come to, I would need to implement an ISA server, if I can't get IIS 7

For IIS 7 I would also need a Windows 2008 server

Unfortunately Apache is not an option for me in this environment.

Do you have any experience with 3rd party modules that you mention?
0
 
LVL 3

Expert Comment

by:eappiah
ID: 37786347
Nope, none sorry.

It's always been Apache installs for just that reason! Implementing ISA has always been too expensive and to much work. Might be different nowdays ,have not had any customers running ISA for ages...

There's also other webservers/proxys that are not Apache that can be used but I have no experience at all.

You got Linux? You run Apache
You got Windows? You run IIS7 or Apache.
That's what my "world" looks like.
0
 
LVL 2

Expert Comment

by:DangItMarilyn
ID: 37790800
Being that you're on a windows machine already a more simple solution might be to install CCProxy and run everything through their ultrasimple interface. The program runs for years without a hiccup. I've used it on a remote server without issues since 2006 or thereabouts.
0
 
LVL 1

Author Comment

by:vision_on
ID: 37794997
Hello DangitMarilyn,

Thanks for your response, however, I am unable to install such a product in this environment.
Looks like I will need to install ISA or a 2008 webserver...

Cheers
V.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

These instructions are based on installing Owncloud on your new raspberry pi connected with a usb HDD. What do you need Part A? A Raspberry Pi, model B. A boot SD card for the Raspberry Pi. A usb HDD An Ethernet cable to connect to the lo…
Before we dive into the marketing strategies involved with creating an effective homepage, it’s crucial that EE members know what a homepage is. In essence, a homepage is the introductory, or default page, of a website that typically highlights the …
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now