Internal Web/App server access

Prabulingam_N1 · ‎2018-02-28

Dear All,

We have a challenge as:

Internal hosted Application/WebServer .

Public IP is Natted inorder for External people to access internal Application.

1. https://company.com/abc
2. https://company.com/xyz

The above 2 sites were hosted in same server.

---Now we want to allow only 2nd site accessing from outside and want to block 1st site if accessed from outside.

---www.company.com resolves with 1.1.1.1 (example of public IP)

---We are unable to achieve this in Application/URL rule (No MobileAccess Blade used)
Like Source as "ANY, Destination as custom URL (https://company.com/abc) and Action as "BLOCK".

---Cannot used Port based access/block in Firewall since both will use https only.

Any suggestions or help is appreciated.

Regards, Prabulingam.N

Marco_Valenti · ‎2018-02-28

my guess is to have a try with url defined as regex , create a custom category and assign to a list or a single url defined as regex and then add in a block or allow rule

Norbert_Bohusch · ‎2018-02-28

As this is HTTPS the big question is if HTTPS Inspection is enabled for the inbound traffic!

Prabulingam_N1 · ‎2018-03-08

Dear Marco/Norbert,

TAC has informed that we may not have control on specific Internal web domain since the Application/URL will be for Internal to External.

Thanks for your inputs.

Regards, Prabulingam.N

Are you a member of CheckMates?

Internal Web/App server access