I have read countless posts and documents explaining that it is impossible to hide/obfuscate a URL from the user in their browser. All I have read says the user simply needs to look at source.
The setup is pretty standard, a public web server and using different ports to reach different servers on the LAN. Obviously we do not want to give the lan servers a public IP so use something like haproxy to proxy between the lan and the user.
I am looking for a way to solve this problem, programmatically or other, what ever works so that the user cannot know the url they are actually reaching so cannot re-use that url again without being logged into our application.
No remote access is required on your part, only consulting where myself and a dev can test.