Solved

SonicWall NSA2400 port 80 options

Posted on 2014-03-19
3
730 Views
Last Modified: 2014-04-02
Hi, we have a Sonicwall NSA 2400 and I'm trying to see if it is possible to have multiple websites point to the SW's public IP and have the SW route that traffic to a single internal webserver where it will be routed to the correct site. Currently we are using a redirect at domain registrar and then rules on the SW to redirect that port's traffic to the internal webserver. So on the DR we have test.site.com set to the SW public address and then at the DR there is a port 80 redirect for any port number, lets say 8888. The SW receives that info and forwards 8888 traffic to port 80 on the internal webserver. This has been just fine for us up to this point, but now we have a site that uses maps for field folks to find things. It appears that once into the site via the redirect, the site tries to access other internal pages on that site with the 8888 port number vice the default 80 and things don't work. If we could find a way to send multiple websites e.g. test.site.com, test1.site.com etc to the same public IP using no redirect and have the SW relay the traffic to the internal webserver and there it would be routed to the proper site. I know this is possible with an IIS server with a public address by using host header entries in the bindings. I just chatted with SW tech on it and he said it couldn't be done, but I'm not so sure since an external IIS server can do it, I would think an appliance like the 2400 could. Thanks for your ideas.
0
Comment
Question by:OGDITAdmin
  • 2
3 Comments
 
LVL 8

Expert Comment

by:N-W
Comment Utility
When you say "have the SW route that traffic to a single internal webserver where it will be routed to the correct site", do you mean that the internal webserver hosts all of the websites or are the websites hosted on various other internal webservers?
0
 

Author Comment

by:OGDITAdmin
Comment Utility
The majority of the sites are on one internal webserver; however, the site with the problem is a seperate server and it runs Apache (handled by a third party so I'm not privy to the ins and outs of it). I'm hoping that there is a way for the sonicwall to basically do what a webserver does and take traffic intended for site1.test.com and direct it to 192.1.1.1. and site2.test.com and direct it to 192.1.1.2
0
 
LVL 8

Accepted Solution

by:
N-W earned 500 total points
Comment Utility
Unfortunately the Sonicwall cannot direct traffic between your internal webservers when you only have a single public IP.

You will need to setup a reverse proxy behind the Sonicwall and use that to direct traffic between your internal webservers as required. Then simply get the Sonicwall to route all HTTP requests from your public IP to your reverse proxy.

It would be a lot easier to ask your ISP for an additional public IP and use that though.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now