Hello,
Is it possible to have my security gateway (R80.30) control access inbound access from the Internet to an internal web site by using its host name header? My goal is to have different firewall access policies for different websites. All the websites will point to the same Internet-facing IP address and the web server will serve up the appropriate website depending on the host name header. Here is an example:
website1.company.com (DNS A record 1.1.1.1) |-->CheckPointGW-->Load Balancer-->Backend web server
website2.company.com (DNS A record 1.1.1.1) |---------^
I am using HTTPS inspection so I would think that the host name header would be exposed and available to be evaluated.
CheckPoint support suggested using a domain object but that doesn't seem right to me.
Thanks for any insights on how to accomplish this!