General discussion

Locked

Web Server behind the ISA Firewall

By gmcguire ·
I am trying to place a webserver behind the ISA firewall. I have multiple websites on the same webserver. I have ISA routing to the webserver, but can only get one site to work on ISA. How can I have the ISA server external IP addresses look at multiple Web sites on the same webserver

This conversation is currently closed to new comments.

9 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Web Server behind the ISA Firewall

by insatiable In reply to Web Server behind the ISA ...

I've only run multiple web sites on the same webserver with different port numbers.

If that's what you are doing, are you allowing more than port 80 for http and 443 for https to route through the firewall to the other webservers?

For instance, webserver1 runs on 198.198.198.1, using port 80.
webserver2 runs on 198.198.198.1, using port 222

So ISA has to allow the http protocol to use port 80 and port 222 to that IP address of the webserver.

I hope that helps --
Good luck,
Melissa

Collapse -

Web Server behind the ISA Firewall

by gmcguire In reply to Web Server behind the ISA ...

The question was auto-closed by TechRepublic

Collapse -

Web Server behind the ISA Firewall

by DC1 In reply to Web Server behind the ISA ...

Either use different port numbers for each web site or seperate IP addresses for each web site.

Collapse -

Web Server behind the ISA Firewall

by gmcguire In reply to Web Server behind the ISA ...

The question was auto-closed by TechRepublic

Collapse -

Web Server behind the ISA Firewall

by dlafrombois In reply to Web Server behind the ISA ...

Both answers are correct but are missing one more element. I make the conclusion that you are proxying with a NAT the web traffic from the public network to the private. If this is correct, you will have to publish multiple IP addresses on the public network which will map (one-to-one) to each of the internal(Private) address allocated to your web servers. This is because the proxy from the public network to the private will be using the firewall/proxy servers ip address only or designated ports of the firewall/proxy servers ip. Thus allowing you public users access to individual web sites using the default port 80. This is more desirable than changing ports.

Collapse -

Web Server behind the ISA Firewall

by gmcguire In reply to Web Server behind the ISA ...

The question was auto-closed by TechRepublic

Collapse -

Web Server behind the ISA Firewall

by kurt.smith In reply to Web Server behind the ISA ...

IF you need for each web site a public IP Address on the External NIC of the ISA server why not creating a DMZ, place there your web server with public addresses and configure packet filters to access.
With this you avoid external people accessing your internal network.

Collapse -

Web Server behind the ISA Firewall

by gmcguire In reply to Web Server behind the ISA ...

The question was auto-closed by TechRepublic

Collapse -

Web Server behind the ISA Firewall

by gmcguire In reply to Web Server behind the ISA ...

This question was auto closed due to inactivity

Back to Security Forum
9 total posts (Page 1 of 1)  

Related Discussions

Related Forums