Because each one of those is a separate VM on a ESXi server, and after each one of them is finished and read to go, it is moved a physical machine and taken to the customer site, so that particular name goes away Replace the citrus, apple, juice, etc with a customer company name or abbreviation and that is what is actually there. Each one of them is a stand alone VM, and each one of them is temporary. As soon as the VM is moved to a physical machine that particular address will be forwarded to the customer site until they take over the handling of the URL. At which point we will then retire the 3rd level domain. I have been trying to install different pieces on my WNDR3700v2 but not having much luck with getting it going.
Of course I guess I could run a small server VM and put pound on it, direct all of the port 80 connections to that server, get it all running there and then use the scripts to get it going on the router. If one of you is just routing connections, no security, the security is in each VM, then I would like to see what you did. The router is a production router so I can not be doing things that will take it down.
Yes, I think that is the direction I am going to move to. Of course if I get a good set of config files, I will try to do it directly on the WNDR3700. At least if I do it on a small server I do not have to worry about buggering up the router.
Indeed, I am quite happy with the WNDR3700v2. The v1 is a PITA, I had a older version of dd-wrt on it, I think it was dated about this time last year, I tried to upgrade it to the latest and keep on getting a semibrick. I have to use the factory firmware to get it back. I have tried all of the tricks and no joy. But the v2 is a keeper...
Finally I gave up and tried it instead on my Raspberry Pi with the exact same config and port forwarding... and surprisingly it worked out of the box!
so I campared the two versions:
raspberry pi:
Code:
# pound -V
starting...
Version 2.6
Configuration switches:
--enable-cert1l
dd-wrt:
Code:
# pound -V
starting...
Version 2.5
Configuration switches:
--enable-cert1l
--with-ssl=/home/slug/optware/ddwrt/staging/opt
after some research I found out that SNI support (Server Name Indication) is added in version 2.6
so the question again, did somebody get a work-around? and no, a wildcard cert is not an option
Cheers iro _________________ E4200 running DD-WRT v24-sp2 vpnkong r20780M enhanced with OTRW Take2
Fritzbox 7170 as Gateway and for VOIP with Freetz 1.2 Stable
Posted: Thu Jun 04, 2015 16:44 Post subject: Can this be done under Linux 3.10.79?
Sorry to resurrect this old thread but I figured since what I'm trying to do was discussed directly here I would give this a shot first.
-----------------------------------------------------------
Like frater, I'm trying to have my subdomains point to different webservers, especially now that I'm getting into virtualization.
As I understand it, I need a wildcard A record setup on my DNS and a reverse proxy (pound) routing to the appropriate lan ips.
My question is, can I get this running with my current setup? I'm running a
RT-N16
Firmware Version DD-WRT v24-sp2 (05/27/15) big - build 27086M
Kernel Version: Linux 3.10.79 #8147 Wed May 27 07:29:43 CEST 2015 mips
From what I see the optware is still broken for these builds... and pound is no longer included even in the Mega builds since k2.6.
Anyway, I'm really liking the k3.1 build and my router runs better than ever but the documentation and development seems lacking. Is my only choice to get this working to go back to a k2.6 build?
Thanks,
Jack
edit: it looks like the big version has pound 2.6 installed by default... if anyone has a tutorial for using preinstalled pound I would appreciate it, in the meantime I'll try and modify frater's code.