I've got a couple questions about reverse proxies: first, is it possible to have the proxy listen only on one specific external IP address? Basically, we'd like to move some of our internally hosted websites behind the reverse proxy, but not all of them. It's unclear to me from the documentation how one would do that.
Two, how does the reverse proxy work if the site behind it is already SSL-secured. Can I just pass 443 traffic to the site without having the firewall handle the certificate?