top button
Flag Notify
    Connect to us
      Site Registration

Site Registration

Accessing Multiple services using limited ports?

+5 votes
366 views

My office allows access of "free internet" servers at :80 (and :443).

What if my server should have several services (https, ssh, vnc etc), that need to be accessed from this restricted subnet?

My server has an own domain, e.g. mydomain.net, My idea was to create as many tap interfaces as many services I would like to have and bind each services to its own tap interface at port :80 and each service should have its own subdomain i.e www.mydomain.net, ssh.mydomain.net, vnc.mydomain.net.

Could this work? What else do I need to make this work?

posted Feb 12, 2014 by Sanketi Garg

Share this question
Facebook Share Button Twitter Share Button LinkedIn Share Button

1 Answer

+1 vote

The thing is that circumvention is also possible by disabling direct proxy script download and set direct internet access, in that case there is no need set up service-subdomain multiplexing.

It could also be possible to set httpd:80 and everything else on 443 where some php script switches which service is running at a given time. Although the question is not how to shoot, but what are steps of the weapon production.

answer Feb 12, 2014 by Seema Siddique
Similar Questions
+1 vote

We have a set up like Apahce (80,443) redirects the request to Tomcat (8080) using mod_jk.

The new requirement is to route the request from the same apache to another tomcat (8090). Hence I made the different config file for apache with different ports (86,4444) and different worker for mod_jk which routes the request to tomcat.

Now the issue is when I hit the url http://:86 and after providing the credentials, it is redirecting to https://:86 and throwing the below error.

Error in browser:

Secure Connection Failed

An error occurred during a connection to x.x.x.x:86. SSL received a record that exceeded the maximum permissible length. (Error code: ssl_error_rx_record_too_long)

Error in logs:

"x16x03x01" 501

[Thu Jan 08 08:22:46 2015] [debug] ssl_engine_io.c(1523): OpenSSL: I/O error, 11 bytes expected to read on BIO#1bf568 [mem: 1f3930]
[Thu Jan 08 08:22:46 2015] [debug] ssl_engine_kernel.c(1806): OpenSSL: Exit: error in SSLv2/v3 read client hello A
[Thu Jan 08 08:22:46 2015] [info] (70014)End of file found: SSL handshake interrupted by system [Hint: Stop button pressed in browser?!]
[Thu Jan 08 08:22:46 2015] [info] Connection to child 3 closed with abortive shutdown(server pritoolvca1.sw.ericsson.se:443 [2], client 153.88.164.216)
[Thu Jan 08 08:23:53 2015] [error] [client 172.17.136.153] Invalid method in request x16x03x01

Could you please suggest where it might went wrong and the way forward..

+1 vote

I want to create Cluster and want to add services through Apache Ambari Restful APIs. I am unable to call POST,PUT and DELETE Web Services successfully.

I am using Resful APIs client to work and trying to use below URL with POST request but not working.

POST REQUEST

http://AmbariServerIP:8080/api/v1/clusters/c1 
0 votes

My System : CentOS Linux release 7.2.1511 (Core)
My Apache version : Apache/2.4.6 (CentOS)

I have configured two httpd instance.

I'm looking for a way to use "apachectl fullstatus" command for the second instance. Is this possible?

0 votes

How to use multiple virtual hosts with a single SSL instance running on the standard https port.

+2 votes

Ive done several searches, and have found old and conflicting responses to the question of sharing a repository via NFS. So what is the current set of concerns with sharing repositories using NFS among several web servers?
Here is the scenario, several hundred repositories shared via NFS to a couple of webdav (Apache mod-svn) servers. The Apache servers set up via a round-robin DNS server (thus they are all sharing a common virtualhost name). All user access is via webdav (authentication and access controlled by an Apache authentication handler). The users will see a common hostname for all repositories. All the servers are "network close" to each other. Assuming that the NFS is current (NFS 4) with subtree checking disabled (as per the FAQ), are there any gotchas or other concerns.
I currently have a solution using some custom Apache proxying that is working, but Im looking at trying to simplify my solution.

...