External access configuration

A reverse proxy is a network server that receives all the external connections and forwards them to the Web server. See below how to configure the system external access:

For the external access to work correctly, the URL to access the system must be interpreted both on the stations and on the application server. To do that, the domain used in external access must be recorded in the hosts files of the application server operating system, pointing to the local IP (or 127.0.0.1).

1.Open to edit the hosts file of the SE Suite server:

# vi /etc/hosts

2.And add the access domain line according to the following example:

127.0.0.1 <externalaccess>.softexpert.com

There may be not port change in the NAT configuration. If, in the IIS, port 80 is being used, the firewall must direct to port 80 as well. For instance, it cannot be directed from 81 to 80, only to the same port.

Reverse proxy

Considering that the DNS to be used externally is sesuite.softexpert.com, this very DNS must respond internally on the proxy server, pointing to the application server where SE Suite is installed, as well as in the internal network resolve the internal IP of the same server.

To ensure this procedure, we may use the proxy server HOSTS file and force the DNS redirecting to the desired IP (internal). The same must be performed on the application server.

Follow the mod_proxy configuration example using the sesuite.softexpert.com DNS:

Order deny, allow

Allow from all

</Proxy>

ProxyRequests On

ProxyVia On

ProxyPass /se https://sesuite.softexpert.com/se

ProxyPassReverse /se https://sesuite.softexpert.com/se

ProxyPass /softexpert https://sesuite.softexpert.com/softexpert

ProxyPassReverse /softexpert https://sesuite.softexpert.com/softexpert

Below is the diagram this system:

modelo_nat