LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster

from [Graeme Fowler] [Permanent Link]
To: "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster
From: Graeme Fowler <graeme@xxxxxxxxxxx>
Date: Tue, 07 Aug 2007 12:33:07 +0100 
On Tue, 2007-08-07 at 13:19 +0200, Ullrich Pfefferlein wrote:
> To make it short - i should give each domain one external ip and
> configure the load balancer to forward (NAT) those to my realservers
> with one port per ssl certificate instead ip address?

That's right.

Note that this can cause potential problems for tech-savvy end users who
will find themselves connecting to port 443 but Apache will be able to
tell them they're on a different port. That's not a problem as such, but
it can raise questions.

There's an alternative way to do this which is slightly more complex but
saves on address space even more, which is to use a reverse proxy to do
the work for you. Both Apache and Squid can work like this, but I'll
leave that as a thought experiment for you :)

Graeme
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster, Ullrich Pfefferlein
Next by Date:  Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster, Joseph Mack NA3T
Previous by Thread:  Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster, Ullrich Pfefferlein
Next by Thread:  Re: [lvs-users] Multiple domains with SSL inside a 2 machine cluster, Ullrich Pfefferlein
Indexes:  [Date] [Thread] [Top] [All Lists]