Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 30 subscribers
  • Views 24328 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple Internal Webservers

CurtisMcHale

Hello There,

Firstly I'd like to say how much I'm enjoying using Sophos XG Firewall. It really is a fantastic product with an amazing level of granularity. I''m making the switch from pFsense :)

I'm here because I'd like some guidance on XG Firewall's Reverse Proxy functionality. I've seen this feature listed in some literature on the Sophos blogs but I cannot find any supporting documentation on it. There's plenty out there for UTM but nothing as far as I can tell for XG Firewall.

I have multiple webservers hosted internally that I access externally. This was a simple setup in pFsense with the addition of the squid package and it's reverse proxy functionality. I did this by configuring two firewall rules that forwarded any traffic received on ports 80 & 443 to one of two ports of which squid was listening on. Squid would then look at the url and forward appropriately based on the config I specified. I had this nailed down to a tee but for the life of me I can't figure out how to do this in XG Firewall.

I'd really appreciate any advice on this. I'd rather not have another appliance doing reverse proxy when XG Firewall can supposedly do this.

Kind Regards,

Curtis.



This thread was automatically locked due to age.
Parents
  • 0
    Hi There,

    This is made easy, it's a business application rule. Use a HTTP Server Application Template.

    If you have multiple domains under "Hosted Server" add your domains. Then Move to "Protected Servers" and add your servers that belong to that domain.

    Alternatively, if you are using a single domain and have path routing requirements (e.g. example.com/dev goes to "Server" /prod goes to "ServerB") add your domain under "Hosted Server" then under "Protected Server" tick the box for path specific routing and chose what path goes to what server.

    Cheers,
    Ben
Reply
  • 0
    Hi There,

    This is made easy, it's a business application rule. Use a HTTP Server Application Template.

    If you have multiple domains under "Hosted Server" add your domains. Then Move to "Protected Servers" and add your servers that belong to that domain.

    Alternatively, if you are using a single domain and have path routing requirements (e.g. example.com/dev goes to "Server" /prod goes to "ServerB") add your domain under "Hosted Server" then under "Protected Server" tick the box for path specific routing and chose what path goes to what server.

    Cheers,
    Ben
Children
No Data