httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From kaushik kanni <roy...@yahoo.com>
Subject Re: Problem of Virtual host
Date Mon, 05 Aug 2002 06:14:03 GMT
Hi Edward,
This might be a hit and miss case but never the less
my thoughts go something like this.

I believe we can configure based on Hostname,IP,and
Port number. So How about trying to configure based on
Port number.
That is, for each of your 4 different virtual host tag
along with the IP number pass 4 different Port
Numbers.
(I am assuming that for non SSL u passed 80 and for
SSL it was 443).
This is again just a suggestion as i have never tried
the configuration of this nature.
All the very best.

So as in 


--- EdwardSPL@ita.org.mo wrote:
> Hello,
> 
> I have just modify the setting ( your suggestion ) :
> But restart the web server :
> The result :
> 
> [Mon Aug  5 11:45:39 2002] [warn] VirtualHost
> 192.168.200.1:443 overlaps
> with VirtualHost 192.168.200.1:443, the first has
> precedence, perhaps you
> need a NameVirtualHost directive
> [Mon Aug  5 11:45:39 2002] [warn] VirtualHost
> 192.168.200.1:80 overlaps
> with VirtualHost 192.168.200.1:80, the first has
> precedence, perhaps you
> need a NameVirtualHost directive
> 
> BTW, I have just visited the FAQ of modssl also :
> http://www.modssl.org/docs/2.8/ssl_faq.html#vhosts
> 
> Why can't I use SSL with name-based/non-IP-based
> virtual hosts?
> The reason is very technical. Actually it's some
> sort of a chicken and
> egg problem: The SSL protocol layer stays below the
> HTTP protocol layer
> and encapsulates HTTP. When an SSL connection
> (HTTPS) is established
> Apache/mod_ssl has to negotiate the SSL protocol
> parameters with the
> client. For this mod_ssl has to consult the
> configuration of the virtual
> server (for instance it has to look for the cipher
> suite, the server
> certificate, etc.). But in order to dispatch to the
> correct virtual
> server Apache has to know the Host HTTP header
> field. For this the HTTP
> request header has to be read. This cannot be done
> before the SSL
> handshake is finished. But the information is
> already needed at the SSL
> handshake phase. Bingo!
> 
> We can't use SSL with virtual hosts ( name-based /
> IP-based ) ?
> 
> So, can you help me more ?
> 
> Thanks,
> 
> kaushik kanni wrote:
> 
> > Hi, please note my suggestion
> > You have to mention the port number along when u
> > mention the IP for the virtual host
> > Ex: <VirtualHost 192.168.200.1>
> > Should be set as <VirtualHost 192.168.200.1:80>
> > and for SSL
> > <VirtualHost 192.168.200.1:443>
> >
> > Best reagards
> >
> > --- EdwardSPL@ita.org.mo wrote:
> > > Hello,
> > >
> > > This my setting of virtual-host :
> > >
> > > <VirtualHost 192.168.200.1>
> > > DocumentRoot "/home/domain1/html"
> > > ServerName domain1.com
> > > ServerAdmin root@@domain1.com
> > > <Directory "/home/domain1/html">
> > >  Options Indexes Includes FollowSymLinks
> MultiViews
> > > ExecCGI
> > >  AllowOverride All
> > >  Order allow,deny
> > >  Allow from all
> > > </Directory>
> > > ErrorLog /var/log/httpd/domian1-error.log
> > > CustomLog /var/log/httpd/domain1-access.log
> common
> > > </VirtualHost>
> > >
> > > <VirtualHost 192.168.200.1>
> > > DocumentRoot "/home/domain1/html"
> > > ServerName www.domain1.com
> > > ServerAdmin root@domain1.com
> > > <Directory "/home/domain1/html">
> > >  Options Indexes Includes FollowSymLinks
> MultiViews
> > > ExecCGI
> > >  AllowOverride All
> > >  Order allow,deny
> > >  Allow from all
> > > </Directory>
> > > ErrorLog /var/log/httpd/domian1-error.log
> > > CustomLog /var/log/httpd/domain1-access.log
> common
> > > </VirtualHost>
> > >
> > > # SSL :
> > >
> > > <IfDefine SSL>
> > > <VirtualHost 192.168.200.1>
> > > DocumentRoot "/home/domain2/html"
> > > ServerName domain2.com
> > > ServerAdmin root@domain2.com
> > > <Directory "/home/domain2/html">
> > >  Options Indexes Includes FollowSymLinks
> MultiViews
> > > ExecCGI
> > >  AllowOverride All
> > >  Order allow,deny
> > >  Allow from all
> > > </Directory>
> > > ErrorLog /var/log/httpd/domian2-error.log
> > > CustomLog /var/log/httpd/domain2-access.log
> common
> > > SSLEngine on
> > > SSLCipherSuite
> > >
> >
>
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> > > SSLCertificateFile
> > > /usr/local/apache/conf/ssl.crt/server.crt
> > > SSLCertificateKeyFile
> > > /usr/local/apache/conf/ssl.key/server.key
> > > <Files ~ "\.(cgi|shtml|phtml|php3?)$">
> > >     SSLOptions +StdEnvVars
> > > </Files>
> > > <Directory "/usr/local/apache/cgi-bin">
> > >     SSLOptions +StdEnvVars
> > > </Directory>
> > > SetEnvIf User-Agent ".*MSIE.*" \
> > >          nokeepalive ssl-unclean-shutdown \
> > >          downgrade-1.0 force-response-1.0
> > > CustomLog /usr/local/apache/logs/upp-ssl.log \
> > >           "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x
> > > \"%r\" %b"
> > > </VirtualHost>
> > > </IfDefine>
> > >
> > > <IfDefine SSL>
> > > <VirtualHost 192.168.200.1>
> > > DocumentRoot "/home/domain2/html"
> > > ServerName www.domain2.com
> > > ServerAdmin root@domain2.com
> > > <Directory "/home/domain2/html">
> > >  Options Indexes Includes FollowSymLinks
> MultiViews
> > > ExecCGI
> > >  AllowOverride All
> > >  Order allow,deny
> > >  Allow from all
> > > </Directory>
> > > ErrorLog /var/log/httpd/domian2-error.log
> > > CustomLog /var/log/httpd/domain2-access.log
> common
> > > SSLEngine on
> > > SSLCipherSuite
> > >
> >
>
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> > > SSLCertificateFile
> > > /usr/local/apache/conf/ssl.crt/server.crt
> > > SSLCertificateKeyFile
> > > /usr/local/apache/conf/ssl.key/server.key
> > > <Files ~ "\.(cgi|shtml|phtml|php3?)$">
> > >     SSLOptions +StdEnvVars
> > > </Files>
> > > <Directory "/usr/local/apache/cgi-bin">
> > >     SSLOptions +StdEnvVars
> > > </Directory>
> > > SetEnvIf User-Agent ".*MSIE.*" \
> > >          nokeepalive ssl-unclean-shutdown \
> > >          downgrade-1.0 force-response-1.0
> > > CustomLog /usr/local/apache/logs/upp-ssl.log \
> > >           "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x
> > > \"%r\" %b"
> > > </VirtualHost>
> > >
> > > error_log file :
> > >
> > > [Mon Aug  5 01:28:01 2002] [warn] VirtualHost
> > > 192.168.200.1:80 overlaps
> > > with VirtualHost 192.168.200.1:80, the first has
> > > precedence, perhaps you
> > > need a NameVirtualHost directive
> > > [Mon Aug  5 01:28:01 2002] [warn] VirtualHost
> > > 192.168.200.1:80 overlaps
> > > with VirtualHost 192.168.200.1:80, the first has
> > > precedence, perhaps you
> > > need a NameVirtualHost directive
> > > [Mon Aug  5 01:28:01 2002] [warn] VirtualHost
> > > 192.168.200.1:80 overlaps
> > > with VirtualHost 192.168.200.1:80, the first has
> > > precedence, perhaps you
> > > need a NameVirtualHost directive
> > > [Mon Aug  5 01:28:01 2002] [crit] (98)Address
> 
=== message truncated ===


__________________________________________________
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message