Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 29064 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Publishing internal web server app to internet without vpn

lara20

Greetings. We have an internal web server running on the lan. End users using click to run technology install the application on the users pc.  The programs works alright for people on the lan as well through ssl vpn. Now i have had a request come through for the application to be available to a few external ( non-domain) users connecting from the internet. 

I am not willing to give those users SSL vpn rights as they are 3rd party and we do not control the devices from which they connect.  My idea was to create normal user accounts  on the XG box and allow access to people who have credentials on the box and publish the app in the user portal. My question revolves around how i would publish an app on the user portal and make it available to these users.I am certain web pages of the internal web server can be made available on the user portal, but how would i go about publishing an application that should be available only when the users are connected to the user portal. I am looking for some advise  -Reverse proxy, dnat or any working solution would be appreciated. 



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to lferrara

    i have done the following changes 

    1. I have a pool of 10 public static ip addresses. In the dns register portal i have configured a A record to point to the server ( eg, webserver.mydomain.com points to the static public ip). This is not my outgoing wan ip address. Its the one i have in my unused pool. I have used that in my Dnat destination Host network. 

    2. Setup Dnat as mentioned in the kb. 

    So from the web, when i type in the url  mywebserver.mydomain.com it should take me directly to the web server. My web server application works on a different port. What changes have i got to make it accessible from the internet.

Children