Apache web server configuration

Somanathreddy Haridas
Somanathreddy Haridas used Ask the Experts™
on
I am frustrated with maintaining and creating multiple rules on the firewall, Same time to expose my servers to the internet.

I wanted to keep only one server in DMZ, wanted to access back-end servers access through that server. Fortunately, I have found Apache web server will be able to achieve this. would be appreciated for the solution and help in configuring Apache server.

Below are the environment details,

IIS Server1 Fully qualified domain Name: ice1.smartyz.com
IIS Server1 IP address: 192.168.1.10
IIS Server2 Fully qualified domain Name: ice2.smartyz.com
IIS Server2 IP address: 192.168.1.20
Apache server Fully Qualified Name: WebSrv.smartyz.com
Public IP address of Apache server: 111.X.X.X
DNS Server name for apache server: UNFYD.com  

now I wanted to access IIS server1 via the link ice1.unfyd.com
and IIS server2 via the link ice2.unfyd.com
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Fractional CTO
Distinguished Expert 2018
Commented:
There no real difference running your firewall rules on one DMZ verses all your hosts.

I use to run a DMZ setup + it became just to cumbersome to maintain.

No I run a simple firewall setup script at start time, for each machine + each LXD container, where I host clients.

Very simple.

Apache really has nothing to do with this, so if you're trying to fix this at the Apache level, you're in the wrong place.

At your DMZ, you'll forward all ports + protocols (or whichever you like) to each of your Apache machine instances.

Then on each Apache machine, you'll require similar routing to ensure all traffic returns along the same path.

This is packet related, not application (Apache) related.

Author

Commented:
Hi I am also worried about the public IP. I wanted to save the public IP.
David FavorFractional CTO
Distinguished Expert 2018

Commented:
Try converting your two statements above into some sort of question. Unsure what these statements might mean.

Maybe also clarify what you expect to gain by this setup, as there's no difference (security wise) if you run iptables on your DMZ or machines.

The only difference is routing packets for many machines through one DMZ will slow down traffic + if you DMZ dies, your entire traffic flow dies too.
David FavorFractional CTO
Distinguished Expert 2018

Commented:
Poster seems to have stopped posting.

Author

Commented:
Hi, I have configured the Apache server as per my needs.
Thanks

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial