1

I have house.dynamicdnsservice.com pointing to my house IP.

My firewall allows incoming https connections to go to 192.168.0.22, where I put google oauth login. That part is working fine. I'm able to access my house from anywhere and run the google login.

My next step is to provide access to logged in users to a webpage in IP 192.168.0.34. The firewall does NOT allow that IP to be accessed from the WAN side.

How can I use the .22 machine to serve/redirect/portal the firewalled .34 server? (after logging in, of course)

I'm running ubuntu/apache/php on both machines.

Henry
  • 1,374
  • 2
  • 14
  • 24
  • What is the purpose of splitting the services between two machines? Why not move the oauth to 34, or the web content to 22? – Digital Chris Feb 20 '14 at 18:34
  • Eventually I'd like to have access to other machines in my LAN (like my NAS) so I thought using 1 machine as entry point would be better for security. Also 34 is a raspberry with a prepackaged software. – Henry Feb 20 '14 at 18:42

1 Answers1

1

It sounds like you want to set up the .22 machine as a reverse proxy

Difference between proxy server and reverse proxy server

Some information about handling authentication pass-thru for an apache reverse proxy: Apache2 Reverse Proxy to an end-point that requires BasicAuth but want to hide this from user

Squid can also be configured to manage this.

A walk-thru of this kind of setup

Community
  • 1
  • 1
Digital Chris
  • 6,177
  • 1
  • 20
  • 29