CentOS

The Community ENTerprise Operating System
https://forums.centos.org/

Public facing DNS server

https://forums.centos.org/viewtopic.php?f=16&t=62549

Page 2 of 2

Re: Public facing DNS server

Posted: 2017/05/18 03:40:35
by supertight
aks wrote:Hmmm, I don't think that'll work as the traffic from the web server will have a source of <private IP>, so the originator can't reply to the message(s).
I think what you want is a reverse proxy.

All traffic inbound hits the proxy and the proxy forwards the request (based on say the URL) to the responsible web server. The web server replies to the proxy and the proxy forwards that onto the client. As the proxy is Internet facing, the originator can simply reply to the proxy (who will forward the request to the web server as before).

Make sense?

How you go about that depends on what proxy you choose to use (many people use Nginx, Apache HTTPd, Apache Traffic Manager and so on - there are many to choose from).
I flipping knew it! The second I started typing it up. I realized that even if the request hit's the server. The DNS is going to give up an internal address that's useless to the browser. FUDGE! I don't know what I was thinking. So noobish of me.

I'm using a server running HTTPd, hosting one(1) of my domains. Can I configure it to send the http/ https/ ftp/ request to another server hosting my other two(2) domains?

Re: Public facing DNS server

Posted: 2017/05/18 11:47:22
by mghe
You should make forward zone from external DNS to internal DNS:

Tip: https://nnc3.com/mags/Networking2/dns/ch10_05.htm <- 10.5.2. Forward Zones

Re: Public facing DNS server

Posted: 2017/05/18 16:02:57
by aks
The keywords to have for Apache http proxy are:

ProxyPassReverse /MyURL https://<Internal_IP>:<Port>/MyURL
ProxyPass /MyURL https://<Internal_IP>:<Port>/MyURL

(note this assumes end to end HTTPS - otherwise substitute http for https in the above - and the MyURl, Internal_IP and Port).

And have a look at the Apache docs using those keywords for detailed explanation.

Re: Public facing DNS server

Posted: 2017/05/18 16:52:45
by TrevorH
How did we get from DNS to http proxy?

Re: Public facing DNS server

Posted: 2017/05/18 18:53:02
by aks
Traffic details posted earlier (and no I was not suggesting DNS proxy - although you probably could .... seems silly though).

Re: Public facing DNS server

Posted: 2017/05/19 02:27:08
by supertight
TrevorH wrote:How did we get from DNS to http proxy?
We realized that I need reverse proxy setup. Not DNS to direct incoming traffic from my external ip to the proper server hosing my http/ https/ ftp/ sites.
All times are UTC
Page 2 of 2

Powered by phpBB® Forum Software © phpBB Limited