Hi Jim,
>> Please try it and report any issue / bug / success story.
>> (the wiki hosting the page above uses the patch, of course)
>>
>
> This is great, and mostly working for me on 1.4.5! Solves a big problem
> of mine.However, is it not possible to use SNI at the same time?
>
> When I configure nginx like so:
> server {
> listen 127.0.0.1:443 ssl;
> server_name *.one.com;
> ...
> }
> server {
> listen 127.0.0.1:443 ssl;
> server_name *.two.com;
> ...
> }
>
> SNI works as expected. If I add "accept_proxy_protocol=on" to both listen
> directives, nginx fails like so:
>
> Starting nginx: nginx: [emerg] duplicate listen options for 127.0.0.1:443
> in /etc/nginx/sites-enabled/_.one.com:9
You can only specify listen options once per address:port tuple, all other
listen directives will inherit those options.
Thats because you cannot enable or disable some specific options or settings
like proxy_protocol, backlog or fastopen on the same port in a specific
server, you can only configure it per address:port pair (like you cannot
configure both http and https on the same port).
So just configure it in the first server and it will be inherited on all
servers using the same address:port tuple.
Also read [1].
So this shouldn't be related to the patch.
> Thanks a lot for the feedback.
> I know nginx devs are now working on an official patch:
> https://twitter.com/mdounin/status/441705983581372417
>
> Baptiste
Nice!
Regards,
Lukas
[1] http://nginx.org/en/docs/http/ngx_http_core_module.html#listen
