Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 1707 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Http / https

jon8145
I'm new to the Sophos UTM and am a bit confused around HTTP/HTTPS for publishing websites. I checked the manuals and Google but nothing seems to explain it clearly enough for me.

If the website is using HTTP and HTTPS, do you need to configure the virtual and real web servers twice, once for each protocol?

Looks like you do but wanted to check before setting everything up.


This thread was automatically locked due to age.
  • 0
    Hi Jon8145 and welcome to the Sophos UTM User BB!

    Virtual webserver has to be configured separately for HTTP and HTTPS.

    How you have to configure the real webserver depends on its current setup. It is possible to use the virtual webserver with HTTPS but the real webserver with HTTP.

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
  • 0 in reply to scorpionking
    How you have to configure the real webserver depends on its current setup. It is possible to use the virtual webserver with HTTPS but the real webserver with HTTP.


    With that setup I take it the user stays HTTPS and the Sophos translates to/from HTTP for the traffic to the real webserver?

    What's the benefit? Not needing the cert and reduced processing overhead on the real webserver? Something else?
  • 0
    No benefit besides less clicking and typing... [;)]

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
  • 0
    Thanks.

    Now to figure out why I can't get FTP working....
  • 0
    Hi, Jon, and welcome to the User BB!

    FTP isn't handled by Webserver Protection.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML