I believe that I read somewhere that you must have a different ip address for each ssl virtualhost.
Ian Moon On Wed, 19 Feb 2003, Boyle Owen wrote: > >-----Original Message----- > >From: Steve Pirk [mailto:[EMAIL PROTECTED]] > >Sent: Donnerstag, 6. Februar 2003 02:02 > >To: [EMAIL PROTECTED] > >Subject: Multiple SSL VirtualHosts in apache > > > > > >I check the mail archives, but could not find a good > >answer for this "problem" I am having. > > > >I am building out a dev environment using apache > >on Solaris. The dev environment needs to run under > >SSL (to simulate the production environment). I am > >starting with 4 virtual servers. They all use the > >same cert file, but are on different ports. > > > >The problem I am running into is that only the "first" > >VirtualHost works. Requests to subsequent ports result > >in a mod_ssl:error:HTTP-request error. Here is the error_log > >entry: > > > >[Wed Feb 5 16:45:11 2003] [error] mod_ssl: SSL handshake failed: HTTP > >spoken on HTTPS port; trying to send HTML error page (OpenSSL library > >error follows) > > This looks like you typed http://server:7001/ into the browser. You > still need to define https even if you have the port number, i.e. > https://server:7001/. > > Can you confirm that if you do this, you still get an error? > > Rgds, > Owen Boyle > > > >[Wed Feb 5 16:45:11 2003] [error] OpenSSL: error:1407609C:SSL > >routines:SSL23_GET_CLIENT_HELLO:http request [Hint: speaking > >HTTP to HTTPS > >port!?] > > > >This is being used in conjunction with an auth package, > >but the redirect after logging in is https:// > > > >Does anyone knnow of a good way to have multiple > >SSL virtual servers on one apache instance? > > The way you are doing it is fine. You just have a probelm... > > > > >Here is a sample of httpd.conf. In this case, port 7000 > >works, but 7001 and 7002 get the mod_ssl error. > > > > <VirtualHost 172.16.202.25:7000> > > DocumentRoot /some/doc/root > > SSLEngine on > > SSLCertificateFile /usr/local/apache/certs/my_cert.crt > > SSLCertificateKeyFile /usr/local/apache/certs/my_cert.key > > </VirtualHost> > > > > <VirtualHost 172.16.202.25:7001> > > DocumentRoot /some/doc/root > > SSLEngine on > > SSLCertificateFile /usr/local/apache/certs/my_cert.crt > > SSLCertificateKeyFile /usr/local/apache/certs/my_cert.key > > </VirtualHost> > > > > <VirtualHost 172.16.202.25:7002> > > DocumentRoot /some/doc/root > > SSLEngine on > > SSLCertificateFile /usr/local/apache/certs/my_cert.crt > > SSLCertificateKeyFile /usr/local/apache/certs/my_cert.key > > </VirtualHost> > > > >-- > >Steve (egrep) > >______________________________________________________________________ > >Apache Interface to OpenSSL (mod_ssl) www.modssl.org > >User Support Mailing List [EMAIL PROTECTED] > >Automated List Manager [EMAIL PROTECTED] > > > > This message is for the named person's use only. It may contain > confidential, proprietary or legally privileged information. No > confidentiality or privilege is waived or lost by any mistransmission. > If you receive this message in error, please notify the sender urgently > and then immediately delete the message and any copies of it from your > system. Please also immediately destroy any hardcopies of the message. > You must not, directly or indirectly, use, disclose, distribute, print, > or copy any part of this message if you are not the intended recipient. > The sender's company reserves the right to monitor all e-mail > communications through their networks. Any views expressed in this > message are those of the individual sender, except where the message > states otherwise and the sender is authorised to state them to be the > views of the sender's company. > > > ______________________________________________________________________ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] > ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
