Exposing my port 80 and 443 via the Omada OC200 Hardware Controller for hosting Nginx reverse proxy
I need a way to forward 443 and 80 to my server!
From what I am reading on the forum the router (er605) automatically forwards 443 and 80 to the controller if not used in standalone mode.
Is this true? This seems like a supersilly implementation! Why did I spend 100$ on a piece of HW only to not be able to host anything using https and hostname.
DNS only resolves to an ip and I cant tell everyone to type in mydoman:specialPort.
Is the way to use the software controller instead and place it downstream from a reverse proxy?
That way all the 443 and 80 trafic would get redirected to a machine that has both the reverse proxy and the controller.
Any Ideas for workarounds of this stupid implementation?
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
You shouldn't believe everything you read, there are many who don't know what they're talking about, so what you say is not true, you can use port 443 and port 80 for whatever you want.
- Copy Link
- Report Inappropriate Content
Wow, thanks for replying!
I am very keep on learning more about where I am going wrong.
Will divide subsequent post because I have trouble with posting images and alike
- Copy Link
- Report Inappropriate Content
port NAT is quite simple, it of course requires that your router has a public wan ip
here is an example of port 80
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Forwarding on 8443 -> 443 works fine and i reach my proxyServer that way but I want to be able to go to to mydomain without specifying a special port
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Not so easy to see.
From what I understand the OC200 does not support ssh so I cannot open a shell on the receiving end.
If i change the access config to be 443 I get redirected to the controller login page.
I did get to the shell on the er605 but this does not make me much wiser except that redirect_https out to be on.
#show ip http configuration
http_port: 80
redirect_https: off
https_port: 443
enable_https: on
web_timeout: 6
#show nat virtual-server
---------------------------------------------------------------------------------------------------
ID Name Interface Exteranl Port Internal Port Internal Server Ip Protocol
---------------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------------
2 xxxxxx WAN1 8443 443 192.168.0.9 ALL
---------------------------------------------------------------------------------------------------
3 xxxx WAN1 443 443 192.169.0.9 ALL
---------------------------------------------------------------------------------------------------
❯ sudo tcpdump -i eth0 port 443 -nn
This yields nothing when i curl mydomain with http (sorry that this forum does not allow me to format as a link)
even if the host was correctly resolved.
Everything works as expected if i visit my domain via port 8443.
But like I stated above, that doesnt really cut it.
Again, thanks for taking your time.
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
@MR.S
OMG! What a silly fool I am!
I have completely overlooked this. Been scratching my head all day and it was staring me straight in the face all the time.
Thank you for taking your time
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 116
Replies: 10
Voters 0
No one has voted for it yet.