On Fri, Jul 06, 2001 at 11:48:27AM -0400, Joseph Mack wrote:
> Dirk Vleugels wrote:
>
> > Yes. With LVS-NAT this would be no problem (targeting different
> > ports on the RS's).
>
> >From the other comments in this thread I thought the name-based
> https needs its own IP. It's been a while since I made a certificate.
> Are you saying that https needs its own IP:port rather than just IP?
Nope. A unique IP is sufficient. Apache has to decide which csr to use
_before_ seeing the 'Host' header in the HTTP request (SSL handshake
comes first). A unique port is also sufficient to decide which virtual
server is meant though (and via NAT easier to manage imho).
Dirk
--
This is your sig. There are thousands more, but this one is yours.
|