Simple Reverse Proxy in C# 2.0 (description and deployment)

• Download source code - 2.76 KB
• Download demo - 4 KB

Introduction

This article describes how to develop a Reverse Proxy in C# using the IIS HTTPHandlers, not manipulating incoming HTTP requests, but only by transferring all requests to the internal server (Remote Server).

Background

Wikipedia says, "A reverse proxy or surrogate is a proxy server that is installed within the neighborhood of one or more servers. Typically, reverse proxies are used in front of Web servers. All connections coming from the Internet addressed to one of the Web servers are routed through the proxy server, which may either deal with the request itself, or pass the request wholly or partially to the main web servers. A reverse proxy dispatches in-bound network traffic to a set of servers, presenting a single interface to the caller. (...)".

To write the code, I was inspired by articles of Vincent Brossier and Paramesh Gunasekaran here at CodeProject.

Using the Code

The code below is the core of the reverse proxy server.

The class ReverseProxy is the core of the application managing the communication between the navigator and the proxy server... points [1] and [4] on the above picture. The class RemoteServer manages communication between the proxy server (front-end to Internet) and the remote server (internal server)... points [2] and [3] on the above picture.

The class ReverseProxy:

1. Creates a connection to the remote server to redirect all requests.
2. Creates a request with the same data in the navigator request.
3. Sends the request to the remote server and returns the response.
4. Sends the response to the client (and handles cookies, if available).
5. Closes streams

namespace ReverseProxy
{
    /// <summary>
    /// Handler all Client's requests and deliver the web site
    /// </summary>
    public class ReverseProxy : IHttpHandler, 
                 System.Web.SessionState.IRequiresSessionState
    {
        /// <summary>
        /// Method calls when client request the server
        /// </summary>
        /// <param name="context">HTTP context for client</param>
        public void ProcessRequest(HttpContext context)
        {
        
            // Create a connexion to the Remote Server to redirect all requests
            RemoteServer server = new RemoteServer(context);
            
            // Create a request with same data in navigator request
            HttpWebRequest request = server.GetRequest();

            // Send the request to the remote server and return the response
            HttpWebResponse response = server.GetResponse(request);
            byte[] responseData = server.GetResponseStreamBytes(response);

            // Send the response to client
            context.Response.ContentEncoding = Encoding.UTF8;
            context.Response.ContentType = response.ContentType;
            context.Response.OutputStream.Write(responseData, 0, 
                             responseData.Length);

            // Handle cookies to navigator
            server.SetContextCookies(response);
            
            // Close streams
            response.Close();
            context.Response.End();

        }
        
        public bool IsReusable
        {
            get { return true; }
        }

    }
}

The class RemoteServer contains many methods:

• Constructor to initialize the communication with the remote server (defined by the URL).
• GetRequest creates an HttpWebRequest object connected to the remote server and sends all "parameters" (arguments, POST data, cookies, ...).
• GetResponse uses the previous object and gets the response from the remote server.
• GetResponseStreamBytes converts the HttpWebResponse (returned by the previous method) to an array of bytes.
• SetContextCookies sends cookies to the navigator context.

namespace ReverseProxy
{
    /// <summary>
    /// Manage communication between the proxy server and the remote server
    /// </summary>
    internal class RemoteServer
    {
        string _remoteUrl;
        HttpContext _context;

        /// <summary>
        /// Initialize the communication with the Remote Server
        /// </summary>
        /// <param name="context">Context </param>
        public RemoteServer(HttpContext context)
        {
            _context = context;

            // Convert the URL received from navigator to URL for server
            string serverUrl = ConfigurationSettings.AppSettings["RemoteWebSite"];
            _remoteUrl = context.Request.Url.AbsoluteUri.Replace("http://" + 
                         context.Request.Url.Host + 
                         context.Request.ApplicationPath, serverUrl);
        }

        /// <summary>
        /// Return address to communicate to the remote server
        /// </summary>
        public string RemoteUrl
        {
            get
            {
                return _remoteUrl;
            }
        }

        /// <summary>
        /// Create a request the remote server
        /// </summary>
        /// <returns>Request to send to the server </returns>
        public HttpWebRequest GetRequest()
        {
            CookieContainer cookieContainer = new CookieContainer();

            // Create a request to the server
            HttpWebRequest request = (HttpWebRequest)WebRequest.Create(_remoteUrl);

            // Set some options
            request.Method = _context.Request.HttpMethod;
            request.UserAgent = _context.Request.UserAgent;
            request.KeepAlive = true;
            request.CookieContainer = cookieContainer;

            // Send Cookie extracted from the incoming request
            for (int i = 0; i < _context.Request.Cookies.Count; i++)
            {
                HttpCookie navigatorCookie = _context.Request.Cookies[i];
                Cookie c = new Cookie(navigatorCookie.Name, navigatorCookie.Value);
                c.Domain = new Uri(_remoteUrl).Host;
                c.Expires = navigatorCookie.Expires;
                c.HttpOnly = navigatorCookie.HttpOnly;
                c.Path = navigatorCookie.Path;
                c.Secure = navigatorCookie.Secure;
                cookieContainer.Add(c);
            }

            // For POST, write the post data extracted from the incoming request
            if (request.Method == "POST")
            {
                Stream clientStream = _context.Request.InputStream;
                byte[] clientPostData = new byte[_context.Request.InputStream.Length];
                clientStream.Read(clientPostData, 0, 
                                 (int)_context.Request.InputStream.Length);

                request.ContentType = _context.Request.ContentType;
                request.ContentLength = clientPostData.Length;
                Stream stream = request.GetRequestStream();
                stream.Write(clientPostData, 0, clientPostData.Length);
                stream.Close();
            }

            return request;

        }

        /// <summary>
        /// Send the request to the remote server and return the response
        /// </summary>
        /// <param name="request">Request to send to the server </param>
        /// <returns>Response received from the remote server
        ///           or null if page not found </returns>
        public HttpWebResponse GetResponse(HttpWebRequest request)
        {
            HttpWebResponse response;

            try
            {
                response = (HttpWebResponse)request.GetResponse();
            }
            catch (System.Net.WebException)
            {                
                // Send 404 to client 
                _context.Response.StatusCode = 404;
                _context.Response.StatusDescription = "Page Not Found";
                _context.Response.Write("Page not found");
                _context.Response.End();
                return null;
            }

            return response;
        }

        /// <summary>
        /// Return the response in bytes array format
        /// </summary>
        /// <param name="response">Response received
        ///             from the remote server </param>
        /// <returns>Response in bytes </returns>
        public byte[] GetResponseStreamBytes(HttpWebResponse response)
        {            
            int bufferSize = 256;
            byte[] buffer = new byte[bufferSize];
            Stream responseStream;
            MemoryStream memoryStream = new MemoryStream();
            int remoteResponseCount;
            byte[] responseData;

            responseStream = response.GetResponseStream();
            remoteResponseCount = responseStream.Read(buffer, 0, bufferSize);

            while (remoteResponseCount > 0)
            {
                memoryStream.Write(buffer, 0, remoteResponseCount);
                remoteResponseCount = responseStream.Read(buffer, 0, bufferSize);
            }

            responseData = memoryStream.ToArray();

            memoryStream.Close();            
            responseStream.Close();

            memoryStream.Dispose();
            responseStream.Dispose();

            return responseData;
        }

        /// <summary>
        /// Set cookies received from remote server to response of navigator
        /// </summary>
        /// <param name="response">Response received
        ///                 from the remote server</param>
        public void SetContextCookies(HttpWebResponse response)
        {
            _context.Response.Cookies.Clear();

            foreach (Cookie receivedCookie in response.Cookies)
            {                
                HttpCookie c = new HttpCookie(receivedCookie.Name, 
                                   receivedCookie.Value);
                c.Domain = _context.Request.Url.Host;
                c.Expires = receivedCookie.Expires;
                c.HttpOnly = receivedCookie.HttpOnly;
                c.Path = receivedCookie.Path;
                c.Secure = receivedCookie.Secure;
                _context.Response.Cookies.Add(c);
            }
        }
    }
}

Sample "Web.Config" File

The config file sets where all the requests received by the reverse proxy server will be sent (for example: 192.168.1.90 on port 81).

<configuration>
  
  <appSettings>    
    <add key="RemoteWebSite" value="http://192.168.1.90:81" />
  </appSettings>
  
  <system.web>
    <httpHandlers>
      <add verb="*" path="*" 
          type="ReverseProxy.ReverseProxy, ReverseProxy"/>
    </httpHandlers>
  </system.web>
  
</configuration>

Deployment

In order to setup the reverse proxy server in IIS, the following steps need to be performed:

1. Compile the project to get the .NET assemblies, and create a web.config configuration file.
2. Create a new virtual directory (or a new website) in IIS, and copy the .NET assemblies into the "bin" folder, and the web.config to the root folder.
3. Right-click the virtual directory just created, and go to "Properties / Home Directory / Configuration > Mappings" (see picture below), and add "wildcard application maps" to "aspnet_isapi.dll" (uncheck Verify that file exists).
4. Click "OK" until you close the "Properties" dialog box.
5. Set the correct IP of the remote server in web.config.

Points of Interest

This article explains how HTTPHandler works and how to capture the flow received by the web server IIS and transfer it (unchanged) to another server.

History

• November 21, 2008 - Baseline (version 1.0).

You must Sign In to use this message board.

FAQ  Noise Tolerance Very HighHighMediumLowVery Low  Search Messages    Layout Expand All MessagesThread ViewNo Javascript (slow)No Javascript Preview    Per page 102550

Msgs 1 to 7 of 7 (Total in Forum: 7) (Refresh) FirstPrevNext

Deployment on Win Server 2003 and IIS 6 Rombolt 10:53 15 Dec '08   Hello Denis, great code by the way. That's exactly what I needed. I used your code and changed a few things since I need to modify the message's body before relaying it to the Remote Host and it works great on my workstation. I'm on XP Pro with IIS 5. When I deployed the ReverseProxy on it's dedicated server, which is running Windows Server 2003 and IIS 6 it's a different story. The server accepts the request, sends it to the remote host, gets the answer back but I never get the final answer in the calling app. I get a "Connection with the server has been reset" messasge. This message is generated by the Power Tcp librairy we use to communicate. I even tried installing the calling app on the server itself and I get the same result. I timed every calls and it seems that as soon as the proxy turns around to relay the post to the remote host the connexion is droppep between the server and my calling app. It's been 2 days now that I'm trying to figure out the source of this and I'm not making any progress what so ever. I'm now turning to you... Do you have a hint about what could be causing this? Thank you very much. Rombolt Sign In·View Thread·PermaLink Re: Deployment on Win Server 2003 and IIS 6 Denis Voituron 9:55 16 Dec '08   Hello, Thanks... but I've also installed this code on Windows Server 2003 with IIS6 and everything works perfectly. Do you have a firewall between your reverse proxy and your remote server? Denis Sign In·View Thread·PermaLink Re: Deployment on Win Server 2003 and IIS 6 Rombolt 10:41 16 Dec '08   Hello again Denis, I have found the cause of the issue and resolved it. It seems that there is a security feature (patch) that was released for IIS6 on Windows Server 2003 that does not affect IIS5 on XP. In my client app. I am injecting user-defined headers that do not exist on the proxy page I am calling and this security patch is made so to drop the communication when such a scenario occurs. Unfortunately this is not the case on my IIS5 so it took me a while to figure it out. These extra headers are required by the remote server we are trying to reach. So instead, I put the extra information in the body, parse it on the proxy and build a new message with the extra info in the headers before forwarding the new message to the remote server and all is good. Thanks for your time and for the Reverse Proxy sample code. Rombolt Sign In·View Thread·PermaLink Basic HTTP Authentication Giorgio Bozio 23:30 2 Dec '08   Hi, nice article and nice code! What if the pages on the remote (internal) server are protected with basic HTTP authentication? Is there a way to re-route the 401 code page to the the client? It would be nice if I could avoid storing the user name and password for the authentication and just hand back to the remote server what I got from the client. This means not hard coding user name and password in the NetworkCredential object, neither having to collect those in a login page, saving them on a session or cookie and rerouting through a NetworkCredential object. Thank you, Giorgio Sign In·View Thread·PermaLink Re: Basic HTTP Authentication [modified] Denis Voituron 9:49 3 Dec '08   You can add your own credentials system (logged in user). Add your code at the end of GetRequest method: public HttpWebRequest GetRequest() { ... // You can add your own credentials system. // Assign the credentials of the logged in user or the user being impersonated. request.Credentials = CredentialCache.DefaultCredentials; return request; } But if you use the Login Control (asp:login), the actual code is correct because the authentication is sent by POST and associated token is stored in a cookie. For example, currently, I'm using this code to forward all requests to a domain (www.mydomain.com) to an Apache Server in my internal network... and on this Apache Server, I'm hosting a CMS created with MySQL/PHP modified on Tuesday, December 9, 2008 7:42 AM Sign In·View Thread·PermaLink 1.00/5 (1 vote) How to do it with IIS7.0 Angelo Cresta 6:15 2 Dec '08   How should I configure IIS 7.0to do the same? Thanks /// Angelo Sign In·View Thread·PermaLink Re: How to do it with IIS7.0 Denis Voituron 6:25 2 Dec '08   Yes, you can do the same... see Microsoft Technet at http://technet.microsoft.com/en-us/library/cc754606.aspx[^] Sign In·View Thread·PermaLink

Last Visit: Wednesday, January 7, 2009 11:26 AM     Last Update:Wednesday, January 7, 2009 11:26 AM