Solved

URL Subdirectory only redirect

Posted on 2013-01-10
3
547 Views
Last Modified: 2013-01-10
Hi there experts, I have a curly issue, that I'm hoping has a simple resolution.

I currently have an SBS 2003 setup with ISA as the firewall.

In this firewall, it has the ability to re-direct an incoming web request based on the subdirectory being accessed, for example, if the request enters on 443 (https) but is attempting to access the /APPLICATION subdirectory, it redirects the request to port 8000 on the internal interface

ie

https://remote.company.com/APPLICATION gets translated to http://internal.company.local:8000/APPLICATION

We have been forced to change from SBS 2003 with ISA to SBS2011 and now need to use a hardware firewall (a Netgear FVS338) and I wanted to try and replicate this behaviour. The particular webapp won't run on the new SBS 2011 setup, so it is going on an older server (and is working well internally)

So to summarise, what I want to do is..

Keep existing http://remote.company.com/ SBS functionality
"Remote.company.com" is a substitude for our external address
"oldappserver" is a substitute for our older internal server's name (a different box to the SBS)

I am hoping that there is an IIS redirect or similar solution to this but so far I've only seen that IIS can redirect whole site names only, not subdirectories in a site, as I don't think the firewall is sophisticated enough to perform this task like ISA could.

thanks
0
Comment
Question by:ivvaust
  • 2
3 Comments
 
LVL 57

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 38765167
There is no way to do this with IIS because of how web servers terminate the connection.

What you describe is known as an application-aware reverse proxy and some firewalls do have this functionality...but not the baseline Netgear models.

You can either replace your firewall with a higher end UTM device with reverse proxy functionality (I don't know of any offhand, but I've heard that higher-end sonicwalls and such can do this), you can set up a dedicated server as a reverse proxy (TMG 2010, Untangle, etc) or you can go a different route altogether such as getting multiple public IPs and no longer rely on the path to route the request.

-Cliff
0
 

Author Comment

by:ivvaust
ID: 38765178
I already have multiple IPs but was hoping to avoid having to hang the machine on its own connection, and get a seperate certificate etc..

Looks like this will have to been the way to go though! Thankyou
0
 

Author Closing Comment

by:ivvaust
ID: 38765184
Clear, concise, and told me exactly what I needed to know.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Preparing an email is something we should all take special care with – especially when the email is for somebody you may not know very well. The pressures of everyday working life stacked with a hectic office environment can make this a real challen…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question