Geekzone: technology news, blogs, forums
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

I iz your trusted friend
5827 posts

Uber Geek
+1 received by user: 143

Mod Emeritus
Lifetime subscriber

Topic # 15484 25-Aug-2007 01:03
Send private message

I need help from Linux guru who have the knowledge on how to make/configure a Reverse Proxy.


I have 2 webservers behind the H/W router. The 2 webservers are on different IP addresses, on different machines. Both need 80 and 443 to themselves. Which is where the conflict starts. I cannot configure one or the other machine to use different ports. Also, the H/W router will answer only-one-WAN IP and with ports and forward to the internal IP where a webserver has.

What I like to achieve or hope to see to make it happen is:

If I type in http://mydomain/server1 it should go to Web Server 1 at port 80 of the internal IP1. Same if http://mydomain/server2 to go to Web Server 2 at port 80 of internal IP2. And https://mydomain:443/folder, should point to Web Server 1/folder at port 443 of internal IP1.


http://server1.mydomain/ -> WebServer 1: port 80
http://server2.mydomain/ -> WebServer 2: port 80
https://server1.mydomain/folder/ -> WebServer 1/folder/: port 443
https://server2.mydomain/folder/ -> WebServer 2/folder/: port 443

Can this be achieve from using Reverse Proxy? The SSL must be carried through to the backend webservers if possible. And the SSL cert will be a self-sign cert, and is of "mydomain".

I read that this is possible using SharePoint and ISA, configuring with Reverse Proxy and SSL Bridging.

Reason behind:

I need the use of SBS2003 for running Exchange 2003, and OWA 2003 (which are on HTTPS), while Windows Home Server with Remote Workspace (for accessing personal documents from web/remote) which is on HTTPS.

Internet is my backyard...


«Geekzone blog: Tech 'n Chips Takeaway» «Personal blog: And then...»


Please read the Geekzone's FUG


Create new topic
488 posts

Ultimate Geek
+1 received by user: 6

  Reply # 83739 25-Aug-2007 09:23
Send private message

I'm confused where is the linux box that you speak of, are you running a linux hw router or are you thinking of running another box as a reverse proxy?

Apache can definitely do what you want with port 80 - either with domain1.mydomain.... or domain2.mydomain....

As for the ssl I think only the mydomiain/folder1 and mydomain/folder2 option will work

pɐǝɥ sıɥ uo ƃuıpuɐʇs

643 posts

Ultimate Geek

  Reply # 83778 25-Aug-2007 16:29

As Filterer noted, Apache has many VIrtual Server features, including SSL virtual servers. but you already have web servers so HTTP load-balancing software would be one solution.

Having globally routable address for server server1.mydomain and server2.mydomain would be the best way to solve the problem IMHO. If you used IPv6 you wouldn't have this problem because every node on your LAN can be globally routable, but back on topic.

So the content just on seperate machines?

Eddie -GPL software developed by Ericcson features an HTTP load balancer (proxy if you like) you can use regular expressions on HTTP headers to proxy an HTTP session to another host.

Squid - this can do it and is very fast but configuration is not easy for Internet facing load-balance proxy scenario. Wikipedia use squid for their load balancing FYI.

Pound - designed for exactly this scenario. Pound might be the best solution, it doesn't have all the extra features the others do and just does what you want.

If you need any help setting up this stuff I'd be glad to help.

Sniffing the glue holding the Internet together


I iz your trusted friend
5827 posts

Uber Geek
+1 received by user: 143

Mod Emeritus
Lifetime subscriber

  Reply # 83832 26-Aug-2007 09:11
Send private message

barf: If you need any help setting up this stuff I'd be glad to help.

thanks Barf. I was hoping you may be interested helping. I'll pm you with more details later. Thanks guys.

Internet is my backyard...


«Geekzone blog: Tech 'n Chips Takeaway» «Personal blog: And then...»


Please read the Geekzone's FUG


Create new topic

Donate via Givealittle

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:

Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:

Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:

News »

A call from the companies providing internet access for the great majority of New Zealanders, to the companies with the greatest influence over social media content
Posted 19-Mar-2019 15:21

Two e-scooter companies selected for Wellington trial
Posted 15-Mar-2019 17:33

GeForce GTX 1660 available now
Posted 15-Mar-2019 08:47

Artificial Intelligence to double the rate of innovation in New Zealand by 2021
Posted 13-Mar-2019 14:47

LG demonstrates smart home concepts at LG InnoFest
Posted 13-Mar-2019 14:45

New Zealanders buying more expensive smartphones
Posted 11-Mar-2019 09:52

2degrees Offers Amazon Prime Video to Broadband Customers
Posted 8-Mar-2019 14:10

D-Link ANZ launches D-Fend AC2600 Wi-Fi Router Protected by McAfee
Posted 7-Mar-2019 11:09

Slingshot commissions celebrities to design new modems
Posted 5-Mar-2019 08:58

Symantec Annual Threat Report reveals more ambitious, destructive and stealthy attacks
Posted 28-Feb-2019 10:14

FUJIFILM launches high performing X-T30
Posted 28-Feb-2019 09:40

Netflix is killing content piracy says research
Posted 28-Feb-2019 09:33

Trend Micro finds shifting threats require kiwis to rethink security priorities
Posted 28-Feb-2019 09:27

Mainfreight uses Spark IoT Asset Tracking service
Posted 28-Feb-2019 09:25

Spark IoT network now covers 98% of New Zealand population
Posted 19-Feb-2019 09:28

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.