Multiple HTTPS web servers behind Mikrotik

SomeYoungGuy · November 26, 2014, 12:39pm

In goggling around i’m not seeing much and what i do see is contradictory.

Lets say i have a very busy HTTPS server (note the “s”… yes, with certificate), so now i have 4 or 5 clones, exported the certificate to each server etc. Locally each web server works perfectly on each respective local ip address - say 192.168.1.2, 3, 4, 5 etc.

So now on the Mikrotik, i have a NAT rule to dst-nat traffic to the servers on a load balance (1/4) basis… from the live ip to the local IP - easy right. But it just doesn’t work at all.

Everything works file on HTTP, but not with HTTPS. In the connections tab, i can see HTTP connections, but there is just nothing, no trace at all, of the HTTPS traffic… i cant even see the connections!

Any help

Edit: Forgot to mention the live IP is not assigned to the Mikrotik, its passing through it.

Sob · November 26, 2014, 3:30pm

If I understand it correctly and you’re just balancing incoming connections on tcp level (you’re not using web proxy as reverse proxy), then it must work. Because http or https, both are just tcp connections from router’s perspective. In any case, you must see incoming https (tcp 443) connections. If you don’t, then it looks like whatever is done for http (tcp 80, forwarding from public IP address) is not done for https (tcp 443), i.e. the problem is elsewhere.

MrIgor · March 30, 2015, 12:51am

What model router do you have?