Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 28 subscribers
  • Views 33808 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is it possible to reverse proxy User Portal?

Slawski

I have ISP uplink with a single IP. I host a WebServer and I would like to publish User Portal too, but they can't share the same 443 port. I tried to define UTM as a WebServer, change User Portal listening port to 4443 and make a rule to publish it, but no luck.

I have another idea to use an internal reverse proxy server to loop back HTTP traffic back to XG ... but this may be tricky and user portal may not work with modified url - e.g.: https://public-host-name.domain.tld/xg-user-portal --> https://internal-proxy.domain.lan --> https://utm.domain.lan:4443.

Anyone here solved this puzzle ?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    Yes, this is what I did initially. Ensured User Portal is accessible from LAN side. Changed listening port to 4443. Check it works once again and then created business rule for HTTP service (HTTPS to be exact) pointing to host definition of LAN IP of XG.

    Then I fixed some problems with certificates - I'm using two different now: one for frontend service (WAN side) and one for appliance (User Portal and Admin Console). Both issued by the same CA, which is added to XG of course.


    But whatever I do I get error 503 - Service Unavailable:

    The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.

    I will have to try a trick with standalone ReverseProxy.