How to properly organize an enterprise network?

G

GlowFisch2019-10-26 10:32:57

Computer networks

GlowFisch, 2019-10-26 10:32:57

Hello! There is an enterprise. Inside the local network. The main server contains KERIO (172.16.100.2)CONTROL, there is also a server with virtual machines (172.16.20.3).
The Internet comes to KERIO and further disperses into threads.
There is an external domain and static IP. We need to raise different web resources on different virtual servers of the same server (172.16.20.3)
And then make access through subdomains OUTSIDE (FROM THE INTERNET), for example one.example.com will redirect our requests to the server 172.16.20.5
two.example.com -> 172.16 .20.9
You also need to set up an ssl certificate and https. Tell me the algorithm and where to dig?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

L

lubezniy, 2019-10-26
@lubezniy

I would single out a virtual machine with nginx, to which I forwarded port 443 from an external IP through the firewall. We make a wildcard certificate from Let's Encrypt on nginx and configure virtual hosts in its configs with ssl reception using this certificate and proxying to specified machines - maybe even via http.

S

semenby, 2019-10-31
@semenby

And then make access through subdomains OUTSIDE (FROM THE INTERNET), for example one.example.com will redirect our requests to the server 172.16.20.5
two.example.com -> 172.16.20.9

I think the reverse proxy in kerio will help you a lot . plus there are about certificates

P

pindschik, 2019-11-14
@pindschik

For example, forward ports 80 and 443 to one machine, on which you install IIS and proxy site traffic with it. He knows how to parse what came for whom - at the site address from the request.
The second method is also IIS, when you visit the desired site, you issue a "forward" to the visitor's browser on a new port. On the new port - forwarding directly to the desired IP.