VisibleThread Help Center

    How to use Microsoft IIS as a reverse proxy for VT Docs

    Follow

    How to use Microsoft IIS as a reverse proxy for VT Doc


    Prerequisite:
    Upload license to VisibleThread Doc server. Port 8080 only opens when the VisibleThread Doc server is set up via uploading the license.


    Install required extensions for URL Rewrite and APR in Microsoft IIS.

    Port 8080 by default is only accessible from localhost too open it for external access, see Step 3 "Setting up the Reverse Proxy" part 5 and 6.


    Note: The following guide is done on Microsoft IIS 7.


    Step 1                                        Creating a Server Certificate


    Note: Step 1 only needs to be done if you don't have an SSL cert for your server already.


    1. First step is to create a SSL cert for the VisibleThread Doc server via Microsoft IIS
    Open your Microsoft IIS server and navigate to the "Server Certificates" node and double click it.
    worddav81077a38563566bf72dd958266d540e2.png
    2. In the pane on the right hand side of the window you will see options for creating an SSL cert. For this example I will use a Self-Signed Certifiacte.
    worddavd2e55b6d0fbb183b80427f72c7f97a2c.png
    3. Click on "Create Self-Signed Certificate" it will prompt you for a friendly name for the cert. Choose a name and hit "ok" and your cert is created.

    worddaved483e944e39df78685212c6b9f4fc73.png

     


    Step 2                                                    Creating a Web-Site


    1. To create a Web-Site click navigate to "Sites" in the left pane.
    worddav7b2260ca1d8df1a9995c5a9187d8f93c.png


    2. After clicking on "Sites" you will see "Add Web Site…." In the pane on the right.
    worddav20f006b496a329d6f7b7a84fa684529f.png


    3. Click on "Add Web Site…." A window will prompt you for information for your new site.

     worddavc823622976405570f8bf0533836b82ad.png
    4. Click "ok" once all relevant information is filled out. Your site is now created.

     


    Step 3                                              Setting up the reverse proxy


    1. To set up the reverse proxy navigate to your new Web-Site and double click on it, this will open all available nodes for your site. Double click on "URL Rewrite".

    worddav7fd5345b503cc40b6794592f0a45e0de.png
    2. After opening "URL Rewrite" add a new rule by going to the pane on the right and clicking on "Add Rule(s)…."
    worddavcf4e5a314981a5a74c869db28fbd0dd5.png


    3. Now choose the "Reverse Proxy" option and click "ok"

    worddavb0d6607129184a23e0bff65c53e2f709.png

     

    4. Enter the I.P port (8080) of your VisibleThread Doc server and make sure the
    "Enable SSL Offloading" box is ticked. Click "ok". Address must be http://ipaddress:8080/dashboard/

     step15.png


     

    5. Before testing the connection you need to edit the Tomcat server.xml file on your VisibleThread Docs server. By default port 8080 is only active to localhost we need to change that so the proxy works.
    To do this SSH to your VT Docs VM and run;

        cd /home/visiblethread/tomcat/conf/

        sudo nano server.xml

    Once inside the server.xml file find "address="localhost" and remove it, See screenshot for what it looks like.

    step16.png

    6. Once the line is removed save the server.xml file and restart tomcat;

        sudo service supervisor restart


    7. To test navigate to your site by clicking on it in the left pane and you will notice now in the right pane there is a "Browse Web Site", click on the address.
    worddavddaa0a778e2327c2368f35610758e59c.png
    You should see the login pageif your VisibleThread Doc server.

     


    Step 4                                      Setting up SSL encryption and port 443


    1. To set up SSL encryption and port 443 we just need to add a new binding. Navigate to your Web-Site and you will see in the right pane "Bindings…." Click on this.
    worddavaec8dac26fdff83a5993b2a2e3f3ef2a.png
    2. A window will open and prompt you for information. Where it says "http" this is a drop down click here and select "https". Now specify the I.P of your IIS server and by default port should be set to 443 if not set it to 443. At the bottom of the window there is another drop down menu for you to select which SSL cert you wish to use, select your cert. Now click "ok"

    worddav816d70c2170df83e4943793d48fb7d66.png


    3. Navigate back to your site and in the right pane you will notice a new link to browse to under "Browse Web Site"
    worddavd41fd8330b58f68c15cc9a9f66ad21e3.png
    4. Click on the new https link to test if your SSL is working it should take you to the same page with SSL encryption.

    Was this article helpful?
    0 out of 0 found this helpful

    Comments