Wondering if this scenario is possible using the UTM.
Currently we have an internal webserver running on port 9999 which we cannot change. We have a web server protection rule on the UTM that listens for requests from external connections on port 80 on the domain abc.domain.com(example). We have the real webserver setup so that requests are sent to port 9999 instead of port 80. All this works fine from an external connection.
We have an internal DNS server so that internal clients resolve abc.domain.com to the internal address of the webserver. My problem is that any internal clients that use the same URL as they would externally doesn't work because they are attempting to connect to the server on port 80 and not 9999. Basically I want to use the URL http://abc.domain.com/site/ and not http://abc.domain.com:9999/site/ for internal and external users.
I was thinking if I setup an additional IP address on the internal interface of the UTM, changed the internal DNS for abc.domain.com to be the additional IP address of the UTM, I could somehow use NAT to allow internal clients to connect to the web server on port 80. Basically creating an internal to internal route but with port translation. Is this possible?
I'm guessing I would need to use some full NAT or masquerading rules else the webserver would return requests directly to the internal client and not via the UTM. If this is possible can someone advise how please?
Thanks Craig
This thread was automatically locked due to age.
