Konfiguracija za promet, ki ni namenjen Gateway.
IIS posluša na vratih 8443 (interno, ni javno):
# Spremeni IIS Site Binding Import-Module WebAdministration Set-WebBinding -Name "Default Web Site" -BindingInformation "*:8443:" -PropertyName Port -Value 8443
Vse zahteve, ki niso namenjene Gateway, se preusmerijo na IIS:
{ "Match": { "Default": true }, "Target": { "Type": "Http", "Url": "http://127.0.0.1:8443", "PreserveHostHeader": true, "ForwardClientCertificate": true } }
{ "ForwardHeaders": { "X-Forwarded-For": true, "X-Forwarded-Proto": true, "X-Client-Cert": true, "X-Client-Cert-DN": true } }
IIS mora biti dosegljiv samo z localhost:
<!-- web.config --> <security> <ipSecurity allowUnlisted="false"> <add ipAddress="127.0.0.1" allowed="true"/> </ipSecurity> </security>