Web 应用程序 Nat 遍历 [英] Web Application Nat Traversal
问题描述
我们正在全国各地的客户端机器上使用 tomcat 在 java 中部署 Web 应用程序.
We are deploying web applications in java using tomcat on client machines across the country.
安装后,我们希望允许通过中央服务器远程访问这些 Web 应用程序,但我们不希望我们的客户端必须打开其路由器上的端口.
Once they are installed, we want to allow a remote access to these web applications through a central server, but we do not want our clients to have to open ports on their routers.
有没有办法以中央服务器可以访问防火墙后面的 Web 应用程序的方式来传输 http 流量?
Is there a way to tunnel the http traffic in a way that the central server can access the web application that is behind the firewall ?
中央服务器有一个静态 IP 地址,我们可以完全控制它.
The central server has a static ip address and we have full control over it.
我们不需要访问文件系统,我们只想通过浏览器访问 Web 应用程序本身.
We don't need to access the filesystem, we only want to access the web application itself through a browser.
推荐答案
对于 NAT,您通常需要做的是让 Web 应用程序向您的中央服务器发出请求 - 这会在 NAT 中打开一个漏洞".然后您的中央服务器可以接管此连接并访问网络应用程序.
For NATs what you usually have to do is get the web applications to make a request to your central server - which opens a "hole" in the NAT. Then your central server can take over this connection and access the web app.
这实质上变成了持久连接(因为它们现在是按需召唤"网络应用程序的方式,它们总是必须与您连接).也就是说,网络应用程序具有内置的逻辑,定期显示我连接到家庭基地了吗?没有?然后打电话回家".这将解决 NAT 问题,因为它是客户端启动的.
This essentially becomes a persistent connection (since they're now way to "summon" web apps on demand, they always have to be connected to you). That is, the web apps have logic built in to them that periodically says "am I connected to home base? No? Then phone home". This will get around NAT issues since it's client initiated.
这篇关于Web 应用程序 Nat 遍历的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
