Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Reverse proxy and in-process HTTP server in Asp.Net Core

Tags:

reverse-proxy

asp.net

proxy

asp.net-core

asp.net-core-mvc

I was reading about Kestrel web server in asp.net core app specifically the in-process http server and reverse proxy.

Being a seasonal web developer, I have trouble in understanding the idea behind:

  • The relevance of a in-process http server implementation in core application ?
  • The importance of reverse proxy approach over any typical web server?
  • The type of issues does a reverse proxy solve in asp.net core world other than forwarding http request?
  • How reverse proxy and Kestrel correlate / communicate (1:n or 1:1) if the asp.net core app is meant to be deployed in a container?
like image 559
Sreejith Nair Avatar asked Apr 25 '17 14:04

Sreejith Nair

People also ask

What is reverse proxy in ASP.NET Core?

A reverse proxy is a special type of proxy server that hides the target server to the client. The client requests a resource to the proxy server which retrieves it from another server and provides it to the client. In this case, the client has no idea that the resource comes from another server.

Is Kestrel better than IIS?

With its lightweight component, Kestrel has better single and concurrent request processing ability over the IIS server.

What is UseHttpsRedirection .NET Core?

HTTPS Redirection Middleware (UseHttpsRedirection) to redirect HTTP requests to HTTPS. HSTS Middleware (UseHsts) to send HTTP Strict Transport Security Protocol (HSTS) headers to clients.

What is WebListener .NET Core?

WebListener is a web server for ASP.NET Core that runs only on Windows. It's built on the Http. Sys kernel mode driver. WebListener is an alternative to Kestrel that can be used for direct connection to the Internet without relying on IIS as a reverse proxy server.

1 Answers

According to official documentation:

ASP.NET Core was designed to run in its own process so that it can behave consistently across platforms. IIS, Nginx, and Apache dictate their own startup process and environment; to use them directly, ASP.NET Core would have to adapt to the needs of each one. Using a web server implementation such as Kestrel gives ASP.NET Core control over the startup process and environment. So rather than trying to adapt ASP.NET Core to IIS, Nginx, or Apache, you just set up those web servers to proxy requests to Kestrel. This arrangement allows your Program.Main and Startup classes to be essentially the same no matter where you deploy.

Besides that having the in-process http server makes stuff really easier for developers. They just download the framework, install it and it works out of the box no matter what OS they are using (Windows, Linux or MacOS) or what web server they want to use later. They just fire dotnet run command which starts the http server with a web app hosting on it.

While it's OK to run it in a development environment when an app is ready for production developers should remember about security. The Kestrel web server is very new web server so it doesn't have all that security and other useful features as IIS, Apache or Nginx obtained during their long lives. This is the only reason why MS recommends to use reverse-proxy in production environment. The goal of reverse proxy is not only forward requests to in-process http server, but also be responsible for security, compression and other features a good web server may provide.

As for container deployments it really depends on what you want to achieve. There are different scenarios:

  • Run ASP.NET Core app and reverse proxy in the same container. In this case ASP.NET core app is usually configured to run on a local port e.g. 5000, while a reverse proxy binds to port 80. This approach is not generally recommended because as best practices say "Each container should have only one concern"
  • Run a reverse-proxy and ASP.NET Core app in 2 different containers. In this case you have to link these containers to each other in order to forward requests from a reverse-proxy to a web app.
  • Run a reverse proxy on one container and configure it to be a reverse proxy for multiple ASP.NET core app containers.
like image 198
Alexey Andrushkevich Avatar answered Sep 22 '22 14:09

Alexey Andrushkevich
Sign in to Comment

Related questions

Roles.GetRolesForUser throws exception Object reference not set to an instance of an object
Opening a Memory Mapped File causes FileNotFoundException when deployed in IIS
Implementing static files cache in asp.net mvc
When exactly is the "first time" a DbContext accesses the database?
Json.Net DeserializeObject failing with OData.Delta - integers only
Do I need SQL Server db_ddladmin rights for a Entity Framework Code-First Approach and is it a security issue?
How do I stop using ASPNETDB.MDF in LocalDB?
ASP .Net VNext and Owin
Request.ServerVariables["LOGON_USER"] vs. Request.LogonUserIdentity
Points about sessions in ASP.NET
Change position of Datepicker inside Modelpopup textbox
Is it possible to use an external Identity Provider in a Web API with ASP.NET 5?
ASP.NET Web Api with Role based authorization
Difference Between ASP.NET WebHooks and Web Services?
How to create custom Authorization in ASP.NET Core (ASP.NET 5)
Displaying a specific page of PDF inside iframe in Asp.net
.NET WebApi HttpClient not sending Windows Authentication credentials to same domain
Unable to view SQL Server mobile report in asp.net report viewer
ASP.NET Core publish produces lots of DLLs in the published folder, why?
HTTP Error 502.5 - Process Failure when application is run from Visual Studio

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!