Solved

URL Subdirectory only redirect

Posted on 2013-01-10
3
550 Views
Last Modified: 2013-01-10
Hi there experts, I have a curly issue, that I'm hoping has a simple resolution.

I currently have an SBS 2003 setup with ISA as the firewall.

In this firewall, it has the ability to re-direct an incoming web request based on the subdirectory being accessed, for example, if the request enters on 443 (https) but is attempting to access the /APPLICATION subdirectory, it redirects the request to port 8000 on the internal interface

ie

https://remote.company.com/APPLICATION gets translated to http://internal.company.local:8000/APPLICATION

We have been forced to change from SBS 2003 with ISA to SBS2011 and now need to use a hardware firewall (a Netgear FVS338) and I wanted to try and replicate this behaviour. The particular webapp won't run on the new SBS 2011 setup, so it is going on an older server (and is working well internally)

So to summarise, what I want to do is..

Keep existing http://remote.company.com/ SBS functionality
"Remote.company.com" is a substitude for our external address
"oldappserver" is a substitute for our older internal server's name (a different box to the SBS)

I am hoping that there is an IIS redirect or similar solution to this but so far I've only seen that IIS can redirect whole site names only, not subdirectories in a site, as I don't think the firewall is sophisticated enough to perform this task like ISA could.

thanks
0
Comment
Question by:ivvaust
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 58

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 38765167
There is no way to do this with IIS because of how web servers terminate the connection.

What you describe is known as an application-aware reverse proxy and some firewalls do have this functionality...but not the baseline Netgear models.

You can either replace your firewall with a higher end UTM device with reverse proxy functionality (I don't know of any offhand, but I've heard that higher-end sonicwalls and such can do this), you can set up a dedicated server as a reverse proxy (TMG 2010, Untangle, etc) or you can go a different route altogether such as getting multiple public IPs and no longer rely on the path to route the request.

-Cliff
0
 

Author Comment

by:ivvaust
ID: 38765178
I already have multiple IPs but was hoping to avoid having to hang the machine on its own connection, and get a seperate certificate etc..

Looks like this will have to been the way to go though! Thankyou
0
 

Author Closing Comment

by:ivvaust
ID: 38765184
Clear, concise, and told me exactly what I needed to know.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The problem of the system drive in SBS 2003 getting full continues to be an issue, even though SBS 2008 and SBS 2011 are both in the market place.  There are several solutions to this, including adding additional drive space or using third party uti…
I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question