Solved

Natting

Posted on 2015-01-29
2
130 Views
Last Modified: 2015-02-01
I have only 1 public ip, although I have 2 applications on port 443 that need to be usable externally.  Is there something else I can do to get them both natted to the outside?
0
Comment
Question by:Jack_son_
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 30

Assisted Solution

by:Rich Weissler
Rich Weissler earned 250 total points
ID: 40578819
A reverse proxy comes to mind.
0
 
LVL 3

Accepted Solution

by:
Stephen Berk earned 250 total points
ID: 40578943
NAT is happening at the IP and TCP layers, so you either need another IP address or you need to move one of your TCP/443 apps to a different port. It probably isn't feasible to move the app to a different port (assuming its public facing), so a 2nd IP address is probably your easiest and/or cheapest option.

That said, Rich is right on with his suggestion of a reverse proxy. I use F5 Big-IP's in this setup and let the URI's of the various web apps dictate how I will forward traffic to the servers being proxied. Here's a doc from F5 that gives an intro to URI translation (http://goo.gl/zyWGWN) and how the Big-IP proxies traffic. Don't get lost in the details, it's really just to show you what conceptually what's happening. And don't think you need an F5 solution to get a reverse proxy for web traffic. The Big-IP is an enterprise solution that handles much more than reverse proxying. Apache, Nginx, and Squid are all software proxies you can load onto a Linux server.

The Q&D: 443 traffic comes in from the Internet, the firewall NAT's to an address on the reverse proxy, the reverse proxy examines the URI and forwards to some web server.
0

Featured Post

Create the perfect environment for any meeting

You might have a modern environment with all sorts of high-tech equipment, but what makes it worthwhile is how you seamlessly bring together the presentation with audio, video and lighting. The ATEN Control System provides integrated control and system automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question