Share via

How To load Balance 2 Web server using ARR and HTTPS

Rob Covello 21 Reputation points
2022-02-07T15:44:45.68+00:00

Currently looking for a simplified LB option for company WEB interface.
I currently have done testing with Simple Kemp Scenarios and Basic MS LB functions.

ARR seems to be another option I may consider.

I have a Single Web site https://tc.tclab.com

I setup ARR server with 2 Back end Webservers but so far I have only been able to forward traffic from ARR to port 80 on my back end servers
I can use both http://tc.tclab.com/info.aspx and http://tc.tclab.com/info.aspx
No matter which I use in browser the backend continues to only answer them on https?

Does anyone have example of a URL rewrite rule that will forward all traffic to https bindings on back end only ?
My site also need to see HTTPS as its required , so SSL offloading has also been disabled to allow servers to respond to SSL request as needed

Any help please ?

Windows development Internet Information Services
0 comments
Accepted answer
  1. Sam Wu-MSFT 7,561 Reputation points Microsoft External Staff
    2022-02-08T01:47:17.243+00:00

    @Rob Covello

    IIS ARR can work as forward proxy only for HTTP not for HTTPS, but you can try to create rule to create https connection with content server. In this case, we need to import server certificate on ARR server and each content server(wildcard certificate).

    For more information, please refer to the document:

    http://blogs.iis.net/wonyoo/ssl-off-loading-in-application-request-routing.

    http://stackoverflow.com/questions/21529754/iis7-application-request-routing-https.

    Hope it can help you.

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Rob Covello 21 Reputation points
    2022-02-08T13:26:58.54+00:00

    Samwu Thanks for the update, I did see these articles earlier and followed them in testing.

    The one item I will try today is using a Wildcard certificate. I have been testing with a single Site SSL for arr.epicortclab.com . I have this installed on the ARR and 2 web servers hosting my app.
    the listeners (hostname) on the port bindings for each are set to this name, and hosts file on each server responds to this locally to resolve as needed.
    I am going to go through the setup one more today and use wildcard SSL on the server and see if this resolves the issues.
    thanks

    0 comments
  2. Rob Covello 21 Reputation points
    2022-02-08T14:36:41.96+00:00

    @Sam Wu-MSFT
    Thanks again
    I just replaced the Single Site SSL with Wildcard,
    Reset the bindings and hostnames to match new SSL.
    Houston we have Redirection !!!
    Application is now coming up on both web server redirected through ARR server.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.