Reverse Proxy and SSL

Discussion created by albertoaloe on Oct 23, 2013
Latest reply on Aug 1, 2016 by rastrauch
Hi everybody.

I have a publicly exposed ArcGIS Server 10.2 running on a virtual machine in perimeter network (DMZ). OS is Windos server 2008 R2 with IIS 7.5 and I'm using web adaptor. IIS and ArcGIS server are set for http only.

I'd like to add a bit more of security putting SSL into place. My network guys proposed me to use a reverse proxy that is holding the signed certificate and then reroute the traffic to my webserver. The reverse proxy will handle the encripted https traffic forwarding http traffic to port 80 of my web server (flagging http header in order to inform the web werver of encryption-decryption).

Is this configuration OK? Somewhere I found an article that says that https should be implemented end to end.