Multiple Websites using Host Header Integration to ISA server 2004/2006

I want to show you on how to publish websites using host header. in here, I used the following components:

  • Internet Information Services 6.0
  • DNS Server  to resolve different name with same IP address.
  • ISA Server 2004/2006

There are many ways to do multiple websites. in my steps, I used only one IP address with different Alias for the host headers.

Step 1: Prepare your website and upload to IIS

Figure 1:  Two websites publish

In this examples, I have 2 websites to published to the Internet. Test1 and Test2 are used with the same IP address 10.0.0.2 and same ports 80.

Figure 2: Two properties of 2 websites

Step 2:  On the both properties, you see on the advanced button in Figure 2. For Test1 website,click the IP address and click Edit and add the host header value “test1.netoverme.info”. repeat this at the Test2 website and give name “test2.netoverme.info”

Figure 3: example of host header given.

After that, restart your IIS server.

step3: Go to your DNS server. at the Forward Lookup Zone, right-click on your domain, and Add Alias and give a Alias Name as “test1” and at Fully Qualified Domain Name (FQDN), I point to my web-server which is dc-server.netoverme.info

Figure 4: Alias CName

please repeat this for test2 website. give alias name as test2.netoverme.info

Step 4: verify that test1.netoverme.info and test2.netoverme.info can browse internally.

step 5: you open your ISA server and create new web server publishing on Firewall Policy. Create to allow “All” . While you go on the wizard,

at the Define Website to Publish, type the internal website. previously, the test1 website is using “test1.netoverme.info”. Thus, we type test1.netoverme.info in the computername/Ip address box and check the box “Forward the original host header instead of the actual one”. This is important because, it will lookup the host header that we created previous step.

Figure 5: Define Website to publish

at the select Web listener, if you don’t have at all, you need to create one web listener. Even you create multiple websites, you need one web listener and listening the same port which port 80.

after you create web listener, at Select Web Listener, click Next and at the user sets, leave it as default for all users and click Next and Finish.

* Repeat the steps for Test 2 website.

Step 6: Define your External DNS and create 2 Host Records. For example, Test1.netoverme.info and Test2.netoverme.info. This is done at your public DNS or External DNS. Finally, Try to Browse..

hopefully you can work it successfully..

Backup your firewall policy (ISA Server 2006)

 

Back up the firewall policy is simply easy.

The steps:

  1. Open ISA Server Management
  2. right-click Firewall Policy. You will see “Export”.
  3. In welcome wizard, just click Next.
  4. You may have to export by using password. This is recommended. Just tick Export confidential information
  5. type your password.
  6. Save the data by entering the location and filename such as E:\Firewallpolicy\allpolicy.xml.Click Next
  7. then, finish.

Just for your information:

if you try to import your policy from ISA server 2004 to ISA server 2006, it will not work.  you will see a warning.

Connectivity Dashboard of ISA Server 2004/2006

How to configure the Dashboard for the connectivity such as DHCP, Active Directory and DNS in ISA Server 2006?

well, it’s pretty easy steps to do. In this example, I will demonstrate on how to cofigure for the AD connectivity. first thing to verify that the Active Directory Server is no downtime.

  • click on Monitoring in the array. you’ll see the dashboard, alerts, sessions, services, configuration, reports,connectivity and logging.
  • Choose connectivity.
  • then, on your right hand of your monitor, you see the tasks pane.
  • on connectivity task pane, click on create new connectivity verifier.
  • then, the welcome wizard will be appeared.
  • type AD-Server just to name the new connectivity verifier
  • click Next.
  • On connection details, type the fullyqualify domain name or server name.
  • in this example, i type “AD-Server.justexample.com”
  • make sure to categorize on Active Directory.
  • On the verification method, it will automatically change to TCP connection to port LDAP which is port 389.

see just like figure below:

i think that would help you..

once you save the change, the dashboard will show “verify” until it shows “good”  if it can reach the Active Directory.

you may follow this step to configure DNS and DHCP as well..

good luck.

PHP installs in Internet Information Services

My old friend has called me las few weeks. he failed to install PHP in IIS. He planned to install PHP and apache for ease. well… I told him that I am not good in Apache web server. Then, he has asked me…what to do?

okay…what I suggested to him that he might install php in Windows XP together IIS 5 or 6. Well…what? IIS?

For me, IIS is the most easiest to configure. you might use these steps to Windows Server 2003 as well.

Preparation:

1. Download php binaries at http://www.php.net in zip files.

2. Install Internet Information Services.

  How to install Internet Information Services in Windows Server 2003?

– Goto control panel and double click add/remove program

-search for Application Servers and click details

-tick the check box of Internet Information Services.

-insert your windows serve 2003 CD and it will install IIS until it finished.

Configure PHP

  • extract the php binaries file that you’ve downloaded in the C:\PHP
  • open c:\PHP. Search a file named “php.ini-recommended”
  • rename php.ini-recommended to php.ini
  • copy php.ini file from C:\php to C:\windows\
  • copy php5ts.dll to C:\windows\system32

Configure IIS to add .php web extension

  • Goto Administrative Tools and select Internet Information Service (IIS) Manager
  • Expand your computername and click Web service extension site
  • on Action menu, click add web service extension.
  • type “PHP” in extension name. click add.
  • on the path file, click browse and goto C:\PHP and click on ‘php5isapi.dll’. click ok
  • on website folder/site, click a default website and right click to properties.
  • at home directory tab, click Configuration. if .php extension does not appear, add manually.On  application extionson, click Add button and browse C:\PHP\php5isapi.dll and type “.php” on the extension and click OK.
  • restart your web server / computer

To verify your php works

1.open notepad

2.type this below:

<?php

phpinfo();

?>

3.save as test.php into C:\inetpub\wwwroot.

4.open web browser or internet explorer. type http://localhost/test.php or http://computername/test.php

5. To see your php works, php configuration page will be appeared.

I think that’s all.

Web Publishing in ISA Server 2006

I would like to write about web publishing with different port.  By default, Website / IIS 6.0 is set in port 80. I now change to different port which is port 9600. I have to make sure the port is unused. you can view the port using netstat command.

Of course, in windows server 2003 environment, you need to install Internet Information Service (IIS) to publish website, or you can use apache. But, I like to use IIS.

after I installed the IIS 6.0, I need to change the port from 80 to 9600. (don’t ask me why 9600).hehehe..

 

Figure 1. properties of IIS

now, I go to ISA Manangement Console. Create a new website publishing on Firewall Policy.

On the publishing type, choose a “single website or load balancer. click Next.

 Figure 2. Publishing Type.

On a Server Connection Security, select the radio button like below (figure 3)

 

 

 

 

 

Figure 3. Server connection Security

On the Internal Publishing Detail, type the internal name site. for example, web-server. tick the box to use a computer name / ip address. for example, my web server is 172.16.0.16.

just click Next for next step.

On the Public Name Details, type the public domain. let’s say www.justexample.info (see figure 4).

 

 Figure 4. Public Name Details

the next configuration is the Web Listener. I need to create a web listener for this web publishing.

it’s simply straightforward, click “New” on select web listener.

   Figure 5. Web listener.

On Client Connection security, just choose Do not require SSL secure connection.

Then, the  web listener should like on Internal and External network.

 Figure 6. Web listener IP address

at the authentication setting, choose no authentication. Then proceed with next and finish.

in the Authentication Delegation, leave it as default and click Next.

At the user sets, just click Next and then Finish.

You have to alter the port number to redirect to the web server. otherwise, it will still listen to port 80. On the properties of the rule that you have created just now, go to the bridging tab and at the non-SSL port, change from 80 to 9600.

Lastly, click Apply to save the configuration.

have a try..and browse your web page.