Replying to the already sent thread should be enough :) np, glad you solved it.
Best, On Wed, 26 May 2021 at 22:00, Serge Byishimo <[email protected]> wrote: > Hi Andrija, > > The reverse proxy also was my first instinct, I already did it and it was > successful, I used Nginx as a reverse proxy inside the VR and redirected > the traffic to instances. I was hesitant too but I have to keep that in > mind that they might get destroyed and I would have to reconfigure the > proxy. Thanks. > > Regarding multiple emails, Sorry it is my frustration, sometimes I just > remember a detail that I should have shared and then I end up sending > another email, I’m going to avoid that in the future. > > Thank you so much you have been a helpful and wonderful community. > > Best Regards, > > On Wed, May 26, 2021 at 9:51 PM Andrija Panic <[email protected]> > wrote: > > > (and I don't know what is happening, but my Gmail sees multiple emails > with > > a same subject/duplicates coming from your side - please avoid sending > > duplicate emails (if you are doing so), or it may be my Gmail after > all...) > > > > > > On Wed, 26 May 2021 at 21:48, Andrija Panic <[email protected]> > > wrote: > > > > > > > > Based on your exact drawing (assumes a single public IP, and a single > VR > > > IP that receives all traffic on ports 80 and 443) - this can NOT be > > > achieved by ACS itself. > > > > > > You need a reverse proxy inside VR - and you are risking having a mess > - > > > but I'm not saying you can't do it. > > > All ACS port forwarding rules are in iptables (iptables-save | less) or > > > loadbalancer implemented via HAPROXY can pass all traffic to a > dedicated > > > internal reverse proxy VM - so you forward 80/443 from home public IP > > --> > > > VR port forwarding --> to an internal single VM (that has nginx/varnish > > > installed) > > > If you opt to modify VR itself, that would be a problem to manage in > the > > > long run - as soon as you restart network with "clean up" - the > existing > > VR > > > is destroyed and a brand new one is created for that network (or for > VPC, > > > if you are working with VPCs) > > > So you would need to automate such thing in some way. > > > > > > Hope that helps, > > > > > > > > > On Wed, 26 May 2021 at 16:39, Serge Byishimo <[email protected]> > > > wrote: > > > > > >> Centos8 > > >> Cloudstack 4.15 > > >> Hypervisor KVM > > >> > > >> This is a drawing of what I’m trying to do > > >> > > >> https://ibb.co/pKvzhHj > > >> > > >> I have different domain names that I want assigned to instances IP > ports > > >> > > >> In the DNS, I put one public IP address that I have from ISP > > 209.150.X.X, > > >> > > >> The cloudstack Virtual Router is at 192.168.1.86 > > >> > > >> Then in my home router I forward traffic from 209.150.X.X port 80 and > > 443 > > >> to the cloudstack virtual router at 192.168.1.86 also port 80 and 443 > > >> > > >> from 209.150.X.X :80 to 192.168.1.86 :80 > > >> from 209.150.X.X :443 to 192.168.1.86 :443 > > >> > > >> How do I engage the virtual router to forward that traffic at > respective > > >> instances IP Ports? > > >> > > >> ACS Virtual Router Details: > > >> https://ibb.co/1Jr2DZT > > >> > > >> > > >> In other words, I need to know how to do port forwarding in the > virtual > > >> router > > >> > > >> I have Basic Network with Security Groups, I use Ingress Rules to > allow > > >> incoming traffic in the Instances > > >> > > >> For example: > > >> > > >> example.com to instance IP : 192.168.1.85:8080 > > >> another.com to instance IP : 192.168.1.91:8443 > > >> > > >> I can ssh inside the Virtual Router VM, I just need to know what I > > should > > >> do! > > >> > > >> I was thinking on installing NGINX as a proxy on the ACS virtual > router > > VM > > >> to forward the traffic it is receiving to Instances, but i’m not sure > if > > >> that will work. > > >> > > >> Thank you! > > >> > > > > > > > > > -- > > > > > > Andrija Panić > > > > > > > > > -- > > > > Andrija Panić > > > > > -- > Byishimo Shema Serge > Kigali, Rwanda > Tel: +250 786 076 106 > www.serge.works > -- Andrija Panić
