Re: MOD SSL over NAT

Sun, 27 Jan 2002 15:56:16 -0800 

you will need separate VirtualHost sections for both port 80 and port 443:

example (not real):

NameVirtualHost 10.10.10.10

<VirtualHost 10.10.10.10:443>
Servername my.server.com
DocumentRoot /path/to/docs
        <IfModule SSL)
        SSLEngine On
        SSLCertificateFile /path/to/crt
        (other ssl stuff)
        </IfModule>
</VirtualHost

<VirtualHost 10.10.10.10:80>
ServerName my.server.com
DocumentRoot /path/to/htdocs
ServerAdmin [EMAIL PROTECTED]
(etc...)
</VirtualHost>

On Sun, Jan 27, 2002 at 05:48:40PM +0000, Jim Lee wrote:
> Response to Response:
> Yes, the Firewall is configured to allow port 443.
> 
> In fact we are able to reach our web server from outside(internet) by 
> typing in the following url.
> 
> http://www.website.com:443
> 
> But the moment we try the following url, it fails
> 
> https://www.website.com
> 
> The same above steps works successfully from within out network(intranet) 
> without any problems. Both http and https work fine.
> 
> Any clues would be higly appreciated.
> 
> 
> 
> Original Posting:
> On Sat, 2002-01-26 at 07:26, Jim Lee wrote:
> We have an apache server with mod_ssl.
> The SSL works fine within our network(intranet).
> But for internet users, who access the apache server over NAT, the SSL does 
> not work.
> 
> 
> 
> Response to Posting:
> are you sure your nat setup is allowing traffic on port 443 (or whatever
> port your ssl is running on)? try telneting to port 443 on the external
> interface from someplace outside the firewall; if you can't you need to
> reconfigure your firewall..
> -jon
> 
> 
> 
> 
> _________________________________________________________________
> Chat with friends online, try MSN Messenger: http://messenger.msn.com
> 
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
> User Support Mailing List                      [EMAIL PROTECTED]
> Automated List Manager                            [EMAIL PROTECTED]

-- 
Glen S Mehn
Lead Systems Administrator              SquareTrade, Inc
[EMAIL PROTECTED]    Building Trust in Transactions (sm)
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to