On 05/12/10 04:53, Keith wrote:
Were doing the above and have relayd listening in 127.0.0.1 port 8080 and have pf rdr rules redirecting https traffic to 127.0.0.1:8080 and the certificate that the https relay is using is called 127.0.0.1.crt This works fine but what if we want to host another ssl certificate ? I can add another IP address to the firewall and put a rdr rules in to pf and can put another relay in to relayd.conf but what name does the certificate get now ? This is where I am stuck..
I think you might be looking for something like this: [ fw0:/etc ] # cat hostname.lo0 inet alias 127.0.0.10 255.255.255.0 inet alias 127.0.0.11 255.255.255.0 inet alias 127.0.0.12 255.255.255.0 inet alias 127.0.0.13 255.255.255.0 inet alias 127.0.0.14 255.255.255.0 [ fw0:/etc ] # ls -l /etc/ssl/127* -rw-r--r-- 1 root wheel 928 Mar 8 03:12 /etc/ssl/127.0.0.10.crt -rw-r--r-- 1 root wheel 940 Mar 8 03:12 /etc/ssl/127.0.0.11.crt -rw-r--r-- 1 root wheel 940 Mar 8 03:12 /etc/ssl/127.0.0.12.crt -rw-r--r-- 1 root wheel 936 Mar 8 03:12 /etc/ssl/127.0.0.13.crt -rw-r--r-- 1 root wheel 936 Mar 8 03:12 /etc/ssl/127.0.0.14.crt Tweak to your needs, of course. -- - RSM www.erratic.ca
