Forum Discussion
Jan_Huffman_404
Nimbostratus
NimbostratusMultiple site hosting and login customization
According to FirePass Online Help, one can customize different web sites hosted by a single FirePass appliance separately by putting the customization HTML (index.htm, right.inc, etc.) into sandbox subdirectories named with the IP address of the specific site to be customized.
I have found that if I specify that a site is to be customized and put the customization HTML into a subdirectory named with that site's IP address, the initial index.htm is indeed presented when I connect from my browser to that site. My index.htm uses FirePass's default my.login.php3 script to process the data entered into my index.htm login page. If the login succeeds and I log out, the logout page presented is the logout.inc from the /sandbox root directory if one exists or the default FirePass logout page. If login fails, the FirePass returns the error on a login page that includes the contents of right.htm from the /sandbox root directory if one exits or without any customized right-side contents if right.htm is not in the /sandbox root.
In no case does the FirePass use the right.inc or logout.inc files from my site IP subdirectory. Note again that on initial login it does use the index.htm page from that subdirectory.
Here's what Online Help says about this issue:
Managing multiple destinations
Additionally, you can present unique content for multiple virtual hosts or URIs by creating corresponding folders containing the custom content you want to use. For example, to override the password recovery screen for a previously configured landing URI company1, create the file company1/resetpass.inc under the sandbox directory. The presence of a virtual host or URI customization overrides any corresponding global sandbox customization.
Note: To customize virtual hosts, you must create WebDAV directories named after the virtual host's IP address.
Can anybody tell me why the FirePass is pulling index.htm from the IP-named subdirectory, but not the .inc files?
Jan_Huffman_404I figured it out!
I built my customized index.htm by grabbing a copy of the standard FirePass login page by doing a "view source" in my browser and copying the page code from there. I then modified it to look the way that I wanted while maintaining its structural integrity (script, form tag, hidden and input fields, etc.)
When you have a customized index.htm in a virtual server (IP-named) subdirectory, you need to find the hidden field called vhost. Set its value to the virtual IP address (the subdirectory name).
When you place index.htm in your IP-named subdirectory, make sure that you refer to other files in this subdirectory with the prefix /sandbox//. For example, if you have an images subdirectory under your ip-named subdirectory containing an image called picture.jpg and your virtual IP address is 64.69.1.1, you would refer to the image as /sandbox/64.69.1.1/images/picture.jpg. Relative references don't work within the sandbox. If your file is in the sandbox, its path should always start with /sandbox.