Portal Home > Knowledgebase > Articles Database > Setup Reverse Proxy Server
Setup Reverse Proxy Server
| Posted by The Eclipse, 05-03-2013, 12:08 AM |
| Is there any software I can install that does the following.
Example:
I have server A (Hub) (1.1.1.1)
server b (1.1.1.2)
server c (1.1.1.3)
server d (1.1.1.4)
Can I make it so server A will reverse proxy to a particular IP based on the port.
For example if server b (1.1.1.2) ran a MC server on port 25565 you could connect to server a (1.1.1.1) on port 25565 and it would go to server b (1.1.1.2) on port 25565
And then 1.1.1.1 on port 25564 would go to server c 1.1.1.3 on port 25564
etc.
Basically I want server a only to be at risk for ddos attacks.
Thanks for the help!
|
| Posted by RyanSA, 05-03-2013, 10:50 AM |
| You could get a dedicated server that supports virtualization, and use Xen or Vmware Esxi to create a virutalized environment, and you could then create 4 vms on that said dedicated server. An alternative might be 4 VPS on the same subnet if you can coordinate that. You could technically do it without them being on the same subnet, but it would be more trouble than it's worth. There should be a primary node that you use for the routing, and then the other 3 can be whatever you need them to be.
I recommend Debian for software routing. If you would like dhcp, install isc-dhcp-server:
http://www.howtoforge.com/dhcp_serve...x_debian_sarge
I like to take it a step further if its something with sensitive data, such as a VPN, or anything to do with $$$. These events call for an added measure of security:
http://www.debian.org/doc/manuals/se...-debian-howto/
Also, if you are going to Reverse Proxy, the only thing that comes to mind is Nginx, which I am a big fan of. The following article says its for Ubuntu, but keep in mind that these distributions are closely related, and use the same base package manager, you should be able to follow the same steps without issue:
http://www.howtoforge.com/how-to-set...n-ubuntu-12.04
The port forwarding question has been asked before, and yes, you can do this. Here is a stack exchange article to point you in the correct direction:
http://stackoverflow.com/questions/4...bar-with-nginx
I hope that this helps! If you run into any troubles, feel free to PM us or post to the forum.
Good luck
|
| Posted by PersonalJ, 05-03-2013, 11:47 AM |
| To proxy game server requests you'll want to setup a GRE tunnel. Nginx will not proxy minecraft client requests.
|
| Posted by evOwl, 05-03-2013, 11:49 AM |
| Varnish Cache has some anti ddos features you may want to look at.
|
| Posted by The Eclipse, 05-03-2013, 10:21 PM |
| How would I set up a simple GRE tunnel?
|
| Posted by tuxandrew, 05-05-2013, 02:45 AM |
| Hey,
In usual cases Nginx will be a good solution, as we can configure Nginx on main server (browsing server) and the requests can be splitup and redirect to satellite servers with respect to the traffic.
|
| Posted by The Eclipse, 05-05-2013, 03:24 AM |
| So I could in theory make and sell my own web proxy. I just configure their domain and then they have their NS point to my proxy server?
|
| Posted by reto, 05-05-2013, 06:38 AM |
| If you're talking about non-HTTP services here, then most probably you're referring not to proxy but simple NAT scenario where all requests come to server A and it forwards them based on port to the respective backend server. What bothers me the most is this:
You do realize this means single point of failure? If server A does not have serious DDoS mitigation capabilities, if it dies, servers B, C and D become unreachable as well.
|
| Posted by ClearDDoS, 05-05-2013, 10:37 AM |
| I think Reverse Proxy Server will not help. You can try port forwarding, such as NAT.
|
Add to Favourites 
Print this Article
Also Read
disable NDR (Views: 771)