Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How to route traffic on same port (443) to multiple internal Servers?

Posted on 2013-01-26
10
Medium Priority
?
87 Views
Last Modified: 2015-06-23
I am sure this is a networking 101 thing but never had to really deal with this before. So I have a number if internal resources (ActiveSync, RDS) that are on different Servers but both run on port 443. We only have one public IP.

So how do we configure this so that traffic for both reaches its destination?
0
Comment
Question by:Flipp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
10 Comments
 
LVL 24

Expert Comment

by:smckeown777
ID: 38824020
I don't think this is possible, since from the outside how does the router decide to send traffic to the ActiveSync server rather than the RDS server?

With port forwarding it sends to 1 internal client, so with only 1 public IP the normal way to make this work is to change ports on the internal server to alternate...i.e. if I have 2 servers running RDS on port 3389(default) then I'd have to change the 2nd server to use an alternate port(3390 for example) and port forward on the router to 3390 for the 2nd server...
0
 
LVL 6

Author Comment

by:Flipp
ID: 38824027
Well I figured thats what multiple public IPs would do ... then you port forward from a.a.a.a:443 to Server1 and b.b.b.b:443 to Server2.

In theory it sounds right (as long as the Router can recognise multiple public IP, but need to get something going in next few days so hoping EE can help me through.
0
 
LVL 24

Expert Comment

by:smckeown777
ID: 38824034
Most business class routers will allow multiple public IP's - what model do you have?

What services are you looking to access? RDS? Is that Remote Desktop Services? Cause that's one I would say you can change to 3390 without much hassle to the end user, but ActiveSync really needs to stay on 443 since you'd have a lot of external configurations to update(phones etc)
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 6

Author Comment

by:Flipp
ID: 38824048
Yes ActiveSync on 443, but looking at using RD Gateway which needs 443 as well. I am interested about your comment above about changing RDP to 3390 though.
Would this be better than 3389 though?

Sonicwall TZ210.
0
 
LVL 15

Expert Comment

by:Frabble
ID: 38824053
A situation like this can be dealt with by using a reverse proxy. Which back end server or servers to connect to is based on the FQDN used by the client. For example, client connections using the URL as.mydomain.com would be configured to go to the ActiveSync server, rds.mydomain.com to the RDS server.
What you use would probably depend on what in-house expertise and platforms you have. Microsoft ISA server, Open Source Squid or hardware load balancing appliances from Cisco, F5 or Riverbed would do what you want.
0
 
LVL 24

Accepted Solution

by:
smckeown777 earned 2000 total points
ID: 38824057
Sorry, I was using the 3389 as an example...

From what I know about RD Gateway(not much as I've never used it) you can't change its port from 443...obviously that's probably why you are here ;)

I doubt you are stuck with this as is...lets see if any other experts have a solution, but without seperate public IP's this one may be a dead end...
0
 
LVL 6

Author Comment

by:Flipp
ID: 38824058
None of which we have ..... I think another public IP sounds easier and less complex.
0
 
LVL 6

Author Comment

by:Flipp
ID: 38824061
I think I will go with 3389 for Users for the moment but would prefer 443. I will have a 2nd public IP next week so will then convert to 443 after wards.
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40845602
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question