This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
EvilGenius
Explorer
‎2023-06-07 03:48 AM
Jump to solution

Reverse Proxy Configuration

I am having problem in configuring a Reverse Proxy.  NOTE: I primarily want the Firewall IP Address to redirect the user to a Webserver hosted inside the LAN subnet. Is there any references or documentation which I can utilize? I did find an official documentation regarding reverse proxy but it says that Configuring reverse proxy is only possible through CLI and once I try the given syntax it gives an error 

 

> ReverseProxyCLI on

Error: The parameters of ReverseProxyCLI command should be provided in pairs (key and value). You have provided an odd number of parameters which suggests that you are probably missing a parameter.

Preview file
73 KB
0 Kudos
2 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
‎2023-06-07 04:14 AM
Jump to solution

You need to connect to the relevant gateway with ssh and enter that command in expert mode.
SmartConsole CLI cannot be used here.
Start here for MAB Reverse Proxy functionality: https://support.checkpoint.com/results/sk/sk110348 

However, if it’s a single website you want to provide access to, you should be able to do it with a NAT rule versus configuring Reverse Peoxy.

View solution in original post

(1)
PhoneBoy
Admin
Admin
‎2023-06-07 07:43 AM
In response to EvilGenius
Jump to solution

Reverse Proxy is for when there are multiple servers available via different URIs using the same IP.
For a single server, you can use a NAT rule like:

  • Original: Any
  • Destination : x.x.x.x (public ip)
  • Original Service : https
  • Translate Source : Original
  • Translate Dest : z.z.z.z (local ip)
  • Translate Service : 443

 

View solution in original post

3 Replies
PhoneBoy
Admin
Admin
‎2023-06-07 04:14 AM
Jump to solution

You need to connect to the relevant gateway with ssh and enter that command in expert mode.
SmartConsole CLI cannot be used here.
Start here for MAB Reverse Proxy functionality: https://support.checkpoint.com/results/sk/sk110348 

However, if it’s a single website you want to provide access to, you should be able to do it with a NAT rule versus configuring Reverse Peoxy.

(1)
EvilGenius
Explorer
‎2023-06-07 04:33 AM
In response to PhoneBoy
Jump to solution

To be more specific, my requirement is to host a BWAPP server on an ubuntu machine and configure the firewall public IP address to redirect the traffic coming from a WAN towards the BWAPP server. Furthermore after successfully configuring this the requirement is also to enable HTTPS inspection for this. Is there a compulsion to use Reverse Proxy or can you please elaborate a bit on how a NAT rule can be established to do this. 

0 Kudos
PhoneBoy
Admin
Admin
‎2023-06-07 07:43 AM
In response to EvilGenius
Jump to solution

Reverse Proxy is for when there are multiple servers available via different URIs using the same IP.
For a single server, you can use a NAT rule like:

  • Original: Any
  • Destination : x.x.x.x (public ip)
  • Original Service : https
  • Translate Source : Original
  • Translate Dest : z.z.z.z (local ip)
  • Translate Service : 443

 

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    Sort by:
    All CloudMates Events