05-01-2008 06:47 AM - edited 03-11-2019 05:39 AM
I have a network currently using ISA 2004. I want to move them to PIX. The only problem are two servers. One server runs a site called www.mydomain.com. The other site (hosted on an Exchange server) server.mydomain.com. As far as the outside world is concerned, all of the traffic for mydomain.com goes to the ISA (198.88.238.x). Once it hits the ISA it looks at the header and determines which inside server to send it to. So - my question is, can this be replicated on a PIX 501? I tried doing a translation rule but it didn't seem to do what I wanted. To make a long story short, when traffic for www.mydomain.com hits the PIX I need it to go to server A. When traffic for server.mydomain.com hits the PIX I need it to go to server B.
05-02-2008 05:15 PM
Hello,
Unfortunatly an ASA/pix is not a reverse proxy box and does not have the ability to look into header information to do advanced decisions on http traffic routing.
The most you could hope for is to map those domain names to different public ip address's and then statically nat them through the pix to the private ip for that url.
05-03-2008 08:26 AM
I was afraid of that. I wish we had the public IP's. Can you recommend a Cisco product that might accomplish this along with being a firewall?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide