Web: Problem with conflict of two NAT rules
-
Hi,
We have an exchangeserver with an internal IP address (A), and a webserver with another internal IP address (B). They are on different machines.Both have certificate, and both uses port 443. How do you solve this on a pfsense firewall with one external IP address?
I mean, if someone visits our webpage and a call is made through our firewall and it must be directed to B.
And a mail is sent through the firewall and it must be directed to A. Is there a way to sense where it should be directed?All I can see is that I can work with ports and protocols.
Oh, and we don't want to fix it by using another port for the webserver so our visitors have to type in https://domain.com:[PORTNUMBER]. It still should be https://domain.com
/Joe
-
Use a reverse proxy with SNI support (would suggest haproxy for this).
-
Thank's doktornotor :)
I will try your solution./Joe
-
I am sorry but I can't get it to work.
I have tried the HAProxy and also squid.
Squid also seem to cache and I don't want that feature.Is there any guide out there that I have missed?
-
https://doc.pfsense.org/index.php/Haproxy_package
-
And https://github.com/PiBa-NL/pfsense-haproxy-package-doc/wiki