On Mon, 26 Jul 2004, Josh Trutwin wrote: > On Mon, 26 Jul 2004 11:53:41 -0500 (CDT) > Nate Carlson <natecars at real-time.com> wrote: > > > On Mon, 26 Jul 2004, jimstreit at northlans.com wrote: > > > 2. If you only have 1 IP address on the public (red) side of IPCop > > > then you will need to forward different ports. port 80 to box 1, > > > port 81 to box 2, port 8080 to box 3 ... > > > > > > Another option is to use virtual servers on a single box. Then > > > you can forward port 80 traffic from a single IP address to 1 box, > > > and let the server deturmine the correct site to return based on > > > the host header information that the browser passes to the server. > > > > You can also use Apache or Squid as a reverse-proxy, and direct the > > traffic that way. (IE, set up Apache or Squid on one of the boxes, > > direct port 80 there, and then configure the proxy to forward the > > data to the proper internal web server based on which site is > > requested.) > > Will this also work for SSL traffic? > Yes, this works with SSL traffic as well. Basically you are establishing an SSL connection to the reverse proxy server, and the proxy server is then making a new SSL connection to the actual web server. _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota Help beta test TCLUG's potential new home: http://plone.mn-linux.org Got pictures for TCLUG? Beta test http://plone.mn-linux.org/gallery tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list