(and I don't know what is happening, but my Gmail sees multiple emails with a same subject/duplicates coming from your side - please avoid sending duplicate emails (if you are doing so), or it may be my Gmail after all...)
On Wed, 26 May 2021 at 21:48, Andrija Panic <[email protected]> wrote: > > Based on your exact drawing (assumes a single public IP, and a single VR > IP that receives all traffic on ports 80 and 443) - this can NOT be > achieved by ACS itself. > > You need a reverse proxy inside VR - and you are risking having a mess - > but I'm not saying you can't do it. > All ACS port forwarding rules are in iptables (iptables-save | less) or > loadbalancer implemented via HAPROXY can pass all traffic to a dedicated > internal reverse proxy VM - so you forward 80/443 from home public IP --> > VR port forwarding --> to an internal single VM (that has nginx/varnish > installed) > If you opt to modify VR itself, that would be a problem to manage in the > long run - as soon as you restart network with "clean up" - the existing VR > is destroyed and a brand new one is created for that network (or for VPC, > if you are working with VPCs) > So you would need to automate such thing in some way. > > Hope that helps, > > > On Wed, 26 May 2021 at 16:39, Serge Byishimo <[email protected]> > wrote: > >> Centos8 >> Cloudstack 4.15 >> Hypervisor KVM >> >> This is a drawing of what I’m trying to do >> >> https://ibb.co/pKvzhHj >> >> I have different domain names that I want assigned to instances IP ports >> >> In the DNS, I put one public IP address that I have from ISP 209.150.X.X, >> >> The cloudstack Virtual Router is at 192.168.1.86 >> >> Then in my home router I forward traffic from 209.150.X.X port 80 and 443 >> to the cloudstack virtual router at 192.168.1.86 also port 80 and 443 >> >> from 209.150.X.X :80 to 192.168.1.86 :80 >> from 209.150.X.X :443 to 192.168.1.86 :443 >> >> How do I engage the virtual router to forward that traffic at respective >> instances IP Ports? >> >> ACS Virtual Router Details: >> https://ibb.co/1Jr2DZT >> >> >> In other words, I need to know how to do port forwarding in the virtual >> router >> >> I have Basic Network with Security Groups, I use Ingress Rules to allow >> incoming traffic in the Instances >> >> For example: >> >> example.com to instance IP : 192.168.1.85:8080 >> another.com to instance IP : 192.168.1.91:8443 >> >> I can ssh inside the Virtual Router VM, I just need to know what I should >> do! >> >> I was thinking on installing NGINX as a proxy on the ACS virtual router VM >> to forward the traffic it is receiving to Instances, but i’m not sure if >> that will work. >> >> Thank you! >> > > > -- > > Andrija Panić > -- Andrija Panić
