Lets Encrypt Web Application Proxy

DavidRa

Infrastructure Architect
Aug 3, 2015
272
122
43
Central Coast of NSW
www.pdconsec.net
It should all work the same way. WAP hasn't really changed that much from 2012 R2 to 2019. You don't need ARR, though, because WAP will publish HTTP as well.

Here's a pretty standard pair of rules for an instance of GitLab (running on a Linux VM behind ADFS and WAP):

1596241012692.png

1596241186410.png

  • External DNS resolves to the firewall.
  • Firewall forwards to WAP.
  • WAP uses internal DNS that resolves to the correct backend server/load balancer/service.
 
Last edited:

gp!

New Member
Jul 30, 2020
2
0
1
Thanks! I've gotten it working. Now trying to figure out how to convert the files certbot gives and do the installation - should be able to make it work from your previous guide once I figure out the pfx conversion