I am unable to route multiple internal ports via 443 to a single service on ports 8001 and 8002 (both a required to function)
I am able to connect to the remote server using IP and tradition connection of 8001 and 8002, however this is unsecure. I would like to route communication over 443 HTTPS. via a seperate server handling all the proxy to a a single internal host.
4. Error messages and/or full log output:
No specific error messages, I can see via TCP viewer that a connection is being established when i route a single port only (10.12.0.36:8001) however i cannot seem to work out from Caddy documentation how to route a port range/multiple.
5. What I already tried:
As above, TCP viewer on both client and server side shows a single est connection. Is it possible to route all traffic matching a domain name over 433 to internally route any source port address to the internal server (could be anything) 8001-8005 as an example.
6. Links to relevant resources:
Reading over the documentation it does not seem to support this function or option is not available (forgive my limited networking experience on this)
The firewall on the internal device is completely off (for testing) and the proxy server too. Not sure where exactly the connection is being refused. (Both machines are on private lan)
Hi @francislavoie, tried doing some more troubleshooting and it seems my firewall (192.168.200.1) is intercepting the packets and dropping them (presumably)
Anything i can put in the configuration file to help get around this issue?
192.168.200.135 (Local machine)
192.168.200.203 (Server machine running service)
192.168.200.1 (Firewall) (Opnsense)
{“level”:“error”,“ts”:1617370780.5333998,“logger”:“http.log.error”,“msg”:“read tcp 192.168.200.135:57502->192.168.200.203:8206: read: connection reset by peer”,“request”:{“method”:“GET”,“uri”:"/api/server/root-certificate-public-key",“proto”:“HTTP/1.1”,“remote_addr”:“192.168.200.1:3246”,“host”:“domain.com”,“headers”:{“X-Auth”:[""],“Accept”:[“application/json”],“X-Connectionguid”:[“ec5f96-6a53-4430-ad5f-5816a72c6448”]},“tls”:{“resumed”:false,“version”:771,“ciphersuite”:49196,“proto”:"",“proto_mutual”:true,“server_name”:“domain.com”}},“duration”:0.000550915,“status”:502,“err_id”:“es2itsanc”,“err_trace”:“reverseproxy.(*Handler).ServeHTTP (reverseproxy.go:411)”}