: How do I redirect a FQDN to an internal URL? We have internal DNS servers where we've registered a FQDN that resolves internally to identityreg.domain.com. We also have an existing web page
We have internal DNS servers where we've registered a FQDN that resolves internally to identityreg.domain.com.
We also have an existing web page at iamserver.domain.com/product/default.asp?Workflow=process1.
We need our users to be redirected to the existing web page URL whenever they type identityreg.domain.com.
We're using IIS for the web server. I'm a newbie here so forgive any misuse of terms. How do I get the FQDN to redirect to the URL?
More posts by @Kristi941
2 Comments
Sorted by latest first Latest Oldest Best
You have two choices.
You allow Internet traffic on port 443 on the machine within the internal network.
Something your sysadmins might now want you to. If you don’t have sysadmins, please don’t :)
Re-use another already server already exposed to the Internet.
This is what we call a "Proxy", a fancy term to say "server for". There are many ways to do, I’m not into Microsoft servers, bear with me for using Open-source only instructions.
Know what is the internal IP of that server, and port (e.g. 10.10.2.33, port 8080)
Make sure your exposed server has SSL (just saying :))
Create a context root from that web server (i.e. a "folder" that is on another server)
If your public server is using NGINX, it would look like this:
```
server {
listen 443 ssl;
server_name iamserver.domain.com;
location /product {
proxy_pass 10.10.2.33:8080; }
}
```
This is it.
Advice:
Trusting the network If you trust the internal network (e.g. its the same physical machine, same VLAN, only your company is using it), you do not need SSL. Otherwise, you would need to have another SSL connection between that proxy and the web app server.
Domain name can have different IPs. Its possible to have a DNS server on the public Internet to point to a different IP address.
I recommend you separate the servers by their role —VMs are so cheap nowadays. If a service that is through a web browser is required to be used publicly, its a sign you need to move things around and make sure its consistent both in the internal network and the public internet to everything related to this particular web app.
Your situation is not exactly clear, but I suspect that you want anyone who access your domain name from the internet to actually access the sub-domain internal server which may or may not be available via the Internet. If the server is not available to the Internet, you can use a proxy server. The proxy hosts the domain name and modifies the packet header and forwards it to the internal server and back again to the user. Some firewalls can do this. Otherwise, if your internal server is available to to the Internet then you can use .htaccess (assuming Apache) to do a blanket redirect to your sub-domain site. Examples of 301 redirect root domain to www can be modified for your purposes.
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.