Using a Proxy grants the ability to use 1 IP address for multiple Tenant environments by mapping FQDN hostnames. This bypasses the need to have 1 IP address per tenant and helps to preserve ipv4 addresses.
- From the external network used to access tenant environments;
- Select 'Edit' in the left menu
- Enable Proxy
- In most cases the proxy listen address field can be left blank. This will default to 0.0.0.0 which means to listen on all addresses.
For VergeOS verions 4.12.6 and older 'Bind DNS' will need to be temporarily enabled if it is not already in use on the network. This will expose the IP Alias selection in the UI (step 2).
- Submit the settings but DO NOT RESTART THE NETWORK OR APPLY RULES YET!
- From the same external network;
- Select 'IP Addresses' in the left menu
- Edit or create an IP Address to use the type 'IP Alias'
- Submit
- Set the external network DNS back to the original setting (4.12.6 and older)
- Select 'Rules'
- Create a new rule that looks like the following image
- Restart the network and apply the rules
- Test the rule by opening a browser tab and navigating to the URL using the IP Alias address assigned in the previous step. If it works properly the UI login page will open on the IP Alias address.
- Create an A record for the new tenant in your domain registrar to point to the assigned IP Alias
- Create a new tenant;
- Enter all of the desired settings leaving the URL blank
- In the 'UI Management' tab of the tenant creation page select 'Create a new FQDN'
- In the 'Proxy Tenant Config' page;
- Select the network the proxy service is running on
- Select the tenant name
- Enter the FQDN of the tenant (The A record created in step 1 of this section)
- Submit
- Select skip at the bottom of the 'UI Management' page to avoid assigning an IP directly to the tenant
A tenant cannot have a UI IP address AND a proxied FQDN
- In the new tenant dashboard select 'Apply Proxy' in the highlighted warning
- Start the tenant and navigate to its URL in a browser tab to login
- Create an A record for the tenant in your domain registrar to point to the assigned IP Alias if one does not already exist
- From the tenant dashboard select 'Edit' in the left menu;
- In the 'UI Address' field select 'None'
- Navigate to the network running the proxy service;
- Select 'Proxy' in the left menu
- From the Proxy Dashboard;
- Select 'View Tenants'
- Select 'New'
- In the 'Proxy Tenant Config' page;
- Select the network the proxy service is running on
- Select the tenant name
- Enter the FQDN of the tenant (The A record created in step 1 of this section)
- Navigate to the tenant dashboard and select 'Apply Proxy' in the highlighted warning
- Select the tenant network (highlighted) from the tenant dashboard
- Select 'Apply Rules' in the highlighted warning
- Test access to the tenant by navigating to it's url in a browser tab
Need more Help? Email support@verge.io or call us at (855) 855-8300