Websites Publishing
-
@noplan said in Websites Publishing:
am i missin some of the fun ?
You're spot-on.
@JKnott : Inspecting packets -means MITM on https. That's even for experts 'hard'.
Many have been sent into the this proxy forest. Very few came back. -
-
-
@JKnott said in Websites Publishing:
Rewriting URLs to host multiple domains on a single IP address with Apache
I run myself Apache2 with a couple of domain names, using for each domain name an IPv4 and an IPv6.
( but I have no NAT neither firewall or comparable in front of my servers )When I saw the local .2 and .3 I defaulted to think of two individual devices, each running a web server like Apache2.
It could be a unique server with 2 IP's, using a single Apache2 instance, with two 'virtual' web servers, each serving one individual IP. But mapping two local IP"s to the same device makes no sense, as everything is behind a NAT anyway. -
My understanding is that multiple URLs point to the same IP address and then Apache sorts things out, using the host name from the header. As it says in that article "Instead, you can use one of Apache's less well-known features to host multiple domains on a single IP address". To me, that means multiple URLs point to 1 address on one server. That can be done by using the URL that's part of the header. Look at the host field here where it says "The domain name of the server (for virtual hosting)". That is what Apache uses to sort out the different server requests to the same IP address.
-
@mohkhalifa
It will be easy if you host both websites in one server.
What is the web server you are using ?
If it supports SNI, then you can host 2 https site with the same TCP 443 port.
Yes, as @Gertjan @JKnott already mentioned before in this thread, they had just told you how to get it done when they are chatting. -
I do this a lot when I don't have enough public IP addresses for my (client's) needs. It's not convenient, but you can do this by making the requester use a custom port number - let's say port 444 instead of 443. On the firewall, you not only forward port 444 to a different IP than 443, you also port-translate it from 444 to 443 - that way you don't have to modify the server to actually listen on 444 unless you want to. (Might want to if accessing the server from the inside).
From the outside, this can be transparent to the users if they can click on a link that redirects them to the URL with port 444. If they have to manually type that into the URL, it can work, but it's ugly and users will get it wrong.
Alternatively, as has been suggested, put both websites on the same server and use host headers to get to the correct site.
-
i don't understand where is the problem
i'm actually doing that kind of config with haproxy
i have www on a ubuntu server, grafana on raspberry and owncloud on another virtual machinewww 172.17.0.100
grafana 192.168.10.202
cloud 172.17.0.99the domain is always kiokoman.eu.org
haproxy is sending the request to the right server based on 'host start with'and i have only one public ip 217.133.80.167
-
I believe the original post was about having 2 independent servers, with different domain names on 1 IP address. That article I linked to describes how to do that.
-
Dear All,
Please note as I described, I have 2 servers (Citrix XenApp and VMware Horizon) and need to publish them to the internet. So, Is there a direct and easy way to do it ?
Thanks -
@kiokoman mentionned your best choice :
HA-proxy.It will receive traffic for both URLs - unpack the TLS traffic, and, upon detection of the corresponding URL used, send the traffic to the correct internal LA based server.
This will cover everything for you except the word 'easy' ....See the YouTube>Netgate>haproxy video - and several others.