 Re: Use FW-1 as HTTPS -> HTTP reverse proxy?
I don't think FW-1 will be able to manage this. Honestly, you'd be better off building a DMZ VLAN with the Apache Server as the reverse proxy, terminate the HTTPS on the Apache and route the http stream back through the FW.
Even if you could make this work, I don't think I'd trust using Check Point in that way. All that reverse proxy stuff was coded back in the 4.0 days, and I doubt the code has been touched in any significant way since then. It wasn't great then either.... |