Re: multiple IIS server boxes behind firewall

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Kristofer Gafvert (kgafvert_at_NEWSilopia.com)
Date: 09/20/04

Next message: nigelcourtney: "Re: Intranet"
Previous message: Rafal W.: "multiple IIS server boxes behind firewall"
In reply to: Rafal W.: "multiple IIS server boxes behind firewall"
Next in thread: Rafal W.: "Re: multiple IIS server boxes behind firewall"
Reply: Rafal W.: "Re: multiple IIS server boxes behind firewall"
Messages sorted by: [ date ] [ thread ]

Date: Mon, 20 Sep 2004 21:33:26 +0200

Hello,

Multiple external IPs is one option. Another option is a reverse proxy, for
example:

http://www.octagate.com/HTTPRedirect.asp

-- 
Regards,
Kristofer Gafvert
http://www.ilopia.com
"Rafal W." <RafalW@discussions.microsoft.com> wrote in message
news:C1BE9B19-3632-4843-9A9A-F1591E19DDBD@microsoft.com...
> I'm having problem with accomplish the following:
> So far I had 1 IIS server hosting multiple web application, so it was
pretty
> simple. all requests were incoming on port 80 of external interface of the
> firewall, based on rule it was redirected then to static private IP in dmz
> then host header is taking care of the rest and display correct web page
..
> now I have a need to add more web servers (physical boxes) to dmz with web
> enabled applications, my question is how firewall will know to which
server
> redirect http request??? Am using checkpoint firewall and they telling me
> this cannot be done unless I will map different external port to internal
80
> !!! I do not want our users to type something like
http://webserver.com:8080
> Does anyone know what are me options?
> I have 1 external interface on firewall with static public IP assigned to
it
> (but have another 10-20 public available for use) .. if this help I can
add
> additional NIC and make it external (although I would have to check if my
> FW-1 license will let me)
> I definitely do not want make these new web servers to be outside of the
DMZ
> exposed to internet.
>
> Any help will be appreciated.
>
> RW
>

Next message: nigelcourtney: "Re: Intranet"
Previous message: Rafal W.: "multiple IIS server boxes behind firewall"
In reply to: Rafal W.: "multiple IIS server boxes behind firewall"
Next in thread: Rafal W.: "Re: multiple IIS server boxes behind firewall"
Reply: Rafal W.: "Re: multiple IIS server boxes behind firewall"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: DMZ Arguments....
... >I find in the net why dmz is better than a simple firewall? ... >but not found nothing concrete to display to my boss ... firewall to have as few ports open as possible. ... require broad access such as email, web servers, etc. So what many ...
(Security-Basics)
NAT versus NO NAT
... We currently have several web servers behind a firewall in the DMZ (DMZ ... Each server has a public facing IP address. ...
(comp.dcom.sys.cisco)
Re: Please Help
... > Go to the thread called Newbie Questions and look at David's post. ... >> installed a firewall, and behind it is twenty windows 2000 machines. ... It looks like to me i can also put these two web servers behind the ... Is there any simple way to protect web servers? ...
(comp.security.firewalls)
Re: hardware firewall recommendation
... We have 2 web servers to protect. ... My main needs are a configurable firewall. ... Calling an illegal alien an "undocumented worker" is like calling a ...
(comp.security.firewalls)
Re: IIS / SSL + Pages not Loading (HTTPS)
... Is there a way to get the common name from the machine? ... >>have made changes to the Load Balancer recently for SSL Sticky Sessions ... what it could be is the Firewall as we havent ... > load-balancer and mutliple identical web servers all serving up SSL ...
(microsoft.public.inetserver.iis.security)