Hello all,
I need to publish an Exchange Server 2013 (OWA, EWS) on one server, remote desktop via ssl gateway (rdweb gateway) on another server and an sstp vpn (windows ssl vpn) on a third server, all behind a simple router with one public ip address and port forwarding enabled to forward port 443 to an nginx installation running on a debian linux box. I have a wildcard SSL certificate (*.mydomain.com) installed on nginx and want to address the respective services via different hostnames (e.g. owa.mydomain.com, rdp.mydomain.com, vpn.mydomain.com).
I had exactly this scenario running over years using Microsoft's Forefront Threat Management Gateway, but for some well known reasons I want and need to get rid of this no longer supported software solution from Microsoft and want to switch to an IPfire firewall in Front with an nginx reveres proxy behind.
Even after longer internet research I did not found enough information to proof if it is possible and how to do it. Is it possible to share this single public ip address and port using nginx to publish all those different services? I tried to publish different web-applications (regular https) using different hostnames, no problem.
But i failed publishing RDP over SSL and/or SSTP. I even could not pass RDP over SSL alone through nginx or SSTP alone - only HTTPS web applications (e.g. Exchange OWA) worked without any issue.
I would be very happy if anyone could tell me
a) if the required scenario can be fulfilled using nginx
b) how to configure nginx to achieve publishing for RDP over SSL and (RDWeb Gateway) and VPN over SSL (SSTP)
All help would be very appreciated!
Thanks very much!
I need to publish an Exchange Server 2013 (OWA, EWS) on one server, remote desktop via ssl gateway (rdweb gateway) on another server and an sstp vpn (windows ssl vpn) on a third server, all behind a simple router with one public ip address and port forwarding enabled to forward port 443 to an nginx installation running on a debian linux box. I have a wildcard SSL certificate (*.mydomain.com) installed on nginx and want to address the respective services via different hostnames (e.g. owa.mydomain.com, rdp.mydomain.com, vpn.mydomain.com).
I had exactly this scenario running over years using Microsoft's Forefront Threat Management Gateway, but for some well known reasons I want and need to get rid of this no longer supported software solution from Microsoft and want to switch to an IPfire firewall in Front with an nginx reveres proxy behind.
Even after longer internet research I did not found enough information to proof if it is possible and how to do it. Is it possible to share this single public ip address and port using nginx to publish all those different services? I tried to publish different web-applications (regular https) using different hostnames, no problem.
But i failed publishing RDP over SSL and/or SSTP. I even could not pass RDP over SSL alone through nginx or SSTP alone - only HTTPS web applications (e.g. Exchange OWA) worked without any issue.
I would be very happy if anyone could tell me
a) if the required scenario can be fulfilled using nginx
b) how to configure nginx to achieve publishing for RDP over SSL and (RDWeb Gateway) and VPN over SSL (SSTP)
All help would be very appreciated!
Thanks very much!