Avatar of cAZtricum
cAZtricum asked on

Multiple secure websites behind Sonicwall NSA 240


i've got a Sonicwall NSA240 firewall and just one public IP address. I have changed the secure management port of the Sonicwall from 443 to 4433, because i needed port 443 to map to my Exchange 2010 server.

The problem now is that i have got another server (2012) where i am hosting another secure website (https) on IIS, which must be accessible from the internet using https!

I can't find the solution to get this thing to work. My hope is all on you guys! ;-)

Robert Reijnders
Hardware FirewallsWeb ServersNetworking

Avatar of undefined
Last Comment
Blue Street Tech

8/22/2022 - Mon
Blue Street Tech

Hi cAZtricum,

You should get more Public IPs.

I don't understand why you need to change ports. .. you can have many services running on the same ports.  If you want to track them just create custom services, e.g. exchange server, hosted exchange and https management is already set by default.

Is there a reason you need to do this?

Where are the servers located. .. in the DMZ?

Three firewall rules should do it with some custom NAT Policies routing the Pub Ips to the servers.

Well, i have port 443 mapped to my exchange server because of outlook web access. There is another website i am running on IIS 8.0 which i also must access through port 443. So both servers needs to be accessed through the same port/service.
Blue Street Tech

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question

Thanks Diversiteit. I already feared this was the only solution. Nowadays it isn't so easy to get some extra public IP's. I will contact my ISP, thanks again!
Your help has saved me hundreds of hours of internet surfing.
Patrick Bogers


Even you get yourself an extra public ip adress OR you are stuck moving the new website to the same box Exchange is hosted on. This way IIS will determine based on host headers which website is called upon using port 443. (BTW this is not my advise, just a possibillity)
Blue Street Tech

I'm glad I could!

Why a 'B' though? See the grading guidelines: http://support.experts-exchange.com/customer/portal/articles/481419-what-grade-should-i-award-

Please explain or change to an 'A'.

Thanks, I appreciate it!
Patrick Bogers

I dont think it is chique to ask for a better grade since we only told him his request is highly impossible?!
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.

It is a solution but not the one i hoped for, that's why. As Patricksr1972 mentioned, it is a little arrogant to ask for a better grade... Nevertheless thank you for your quick answers!
Blue Street Tech

Your welcome. It's not arrogance, just following the grading guidelines. :-)
Just because you don't like the answer doesn't change the fact that it is the answer. Thank you for your reply.