Hey Guys. Yesterday I upgraded one of our servers from ATS 2.0.7 to 3.2. We use it for reverse proxying. The proxy terminates SSL connections from the clients and forwards them to the origin servers via regular HTTP. The certificate we use is a wildcard certificate from GoDaddy.
I followed the upgrade guide and configured remap.config with proxy.config.http.server_ports 80 443:ssl I also configured ssl_multicert.config with dest_ip=<proxy IP address> ssl_cert_name=<copied proxy.config.ssl.server.cert.filename from records.config> ssl_key_name=<copied proxy.config.ssl.server.private_key.filename from records.config> I am able to access the ssl sites through the proxy using IE9 and desktop chrome file but I get nothing on IE8 now. Also on mobile chrome, I get a warning that the certificate is not trusted now. We did not have these issues using ATS 2.0.7. I suspect it has to do with the GoDaddy certificates using an intermediate CA. I had configured proxy.config.ssl.server.cert_chain.filename in records.config with the godaddy certificate chain. I cannot find an equivalent setting in the ssl_multicert.config. Any help would be appreciated. Thanks, Ben
