I hope someone can help me. In the last few months we integrated the CSS into our network infrastructure. All of our web services have been migrated behind the CSS. We have a new application that will be located in the DMZ.
The application will use the same domain name (collectionscanada.gc.ca) but a different URI (collectionscanada.gc.ca/depot) to identify the service to a server in the DMZ.
The request will hit the (collectionscanada.gc.ca) VIP but will be forwarded to the server in the DMZ
Is this feasible?
yes, you can use the 'url "/depot*"' command to distinguished between the 2 content rules and then use different servers.
If your server is not attached to a CSS vlan, make sure the return path from server to client goes through the CSS.
You might need to configure client nat.