Re: Virtual Host SSL Confirmation Question

Sat, 02 Sep 2000 03:16:24 -0700 


Grant,

      Thanks for checking all the available resources before posting :-)

      Yes - this will work fine for you but there is a possible problem:

      Many corporate firewalls use port based filtering and will only allow SSL
      on port 443. So it is possible that your sites will be unreachable from
      these networks.

      If you're only expecting home users, this configuration should be fine.

      HTH,

      Simon Wilcox
      Williams Lea Group



>From   "Grant Walters" <[EMAIL PROTECTED]>         Date
       00:06:01   2 September 2000

Please respond to [EMAIL PROTECTED]

To:   [EMAIL PROTECTED]
cc:    (bcc: Simon Wilcox/BASE/WilliamsLea)
Fax to:
Subject:  Virtual Host SSL Confirmation Question



Hi,

Like Mark Lo earlier I am trying the Virtual SSL issue.  This post is just
to ask for confirmation of my configuration so please don't swear at me.

Having followed the thread and RTFM I have determined that there are two
ways to have the same server handle multiple domains under SSL?

Separate IP addresses (IP aliases) or different ports (444:445 etc...)

My configuration in Apache now states:

NameVirtualHost 192.168.1.1:80
NameVirtualHost 192.168.1.1:444
NameVirtualHost 192.168.1.1:445

<VirtualHost 192.168.1.1>
ServerName www.abc.com
</VirtualHost>

<VirtualHost 192.168.1.1>
ServerName www.def.com
</VirtualHost>

<VirtualHost 192.168.1.1:444>
ServerName www.abc.com
</VirtualHost>

<VirtualHost 192.168.1.1:445>
ServerName www.def.com
</VirtualHost>

Connecting to either of the SSL ports returns the correct Certificate and
there are no errors in the logs, so...

Is this a valid real world configuration?
Am I asking for trouble somewhere?

Any comments appreciated.

Regards

GRANT WALTERS
Walters & Associates, P O Box 13-043, Johnsonville, Wellington, New Zealand
Phone: +64 4 4765175 CellPhone: 025 488265

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]






______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to