Hi,
Im having a NATed network. SPHIS XG is handling all incoming traffic. My question is:
How can I publish different services based on FQDN and not port number?
I do not want to enter xyz.com:9965 for accounting, xyz.com:80 for web server and xyz.com:21 for FTP. Instead, I want to use: accounting.xyz.com, web.xyz.com and ftp.xyz.com.
Thanks in advance!
Hi Marwan,
You will need to set those domains up as FloSupport have said to point at your IP. Then on the XG you will want to use the Web Application template from Business Application Policies.
Basically you'll be using Webserver protection and setting up a listener that examines the host request and redirects to the appropriate server you have set.
Unfortunately, default natting cannot do this on any appliance i have heard of.
Below is a short guide and to add to it, always enable "pass host header" so if you have a server that has multiple bindinga your webaerver will respond with the correct one.
Emile
Just to clarify:
My accounting system uses port 9965. It is now published on SOPHOS.
My FTP server uses default port. It is not published yet.
So I don’t want to use accounting.xyz and ftp.xyz:21. I want SOPHOS to identify the internal server (IP) AND its own port.
So,
I want to use accounting.xyz and .
Does your posted solution serve my plan?
