httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "J. Greenlees" <ja...@shaw.ca>
Subject Re: Problem of Virtual host
Date Mon, 05 Aug 2002 06:30:19 GMT
as long as no firewall closing the extra ports and you add the ports to 
the https.conf that would work.
specifying the ports you have to make sure you add them to all relevant 
configuration files or you will not get anywhere.

kaushik kanni wrote:
> Hi Edward,
> This might be a hit and miss case but never the less
> my thoughts go something like this.
> 
> I believe we can configure based on Hostname,IP,and
> Port number. So How about trying to configure based on
> Port number.
> That is, for each of your 4 different virtual host tag
> along with the IP number pass 4 different Port
> Numbers.
> (I am assuming that for non SSL u passed 80 and for
> SSL it was 443).
> This is again just a suggestion as i have never tried
> the configuration of this nature.
> All the very best.
> 
> So as in 
> 
> 
> --- EdwardSPL@ita.org.mo wrote:
> 
>>Hello,
>>
>>I have just modify the setting ( your suggestion ) :
>>But restart the web server :
>>The result :
>>
>>[Mon Aug  5 11:45:39 2002] [warn] VirtualHost
>>192.168.200.1:443 overlaps
>>with VirtualHost 192.168.200.1:443, the first has
>>precedence, perhaps you
>>need a NameVirtualHost directive
>>[Mon Aug  5 11:45:39 2002] [warn] VirtualHost
>>192.168.200.1:80 overlaps
>>with VirtualHost 192.168.200.1:80, the first has
>>precedence, perhaps you
>>need a NameVirtualHost directive
>>
>>BTW, I have just visited the FAQ of modssl also :
>>http://www.modssl.org/docs/2.8/ssl_faq.html#vhosts
>>
>>Why can't I use SSL with name-based/non-IP-based
>>virtual hosts?
>>The reason is very technical. Actually it's some
>>sort of a chicken and
>>egg problem: The SSL protocol layer stays below the
>>HTTP protocol layer
>>and encapsulates HTTP. When an SSL connection
>>(HTTPS) is established
>>Apache/mod_ssl has to negotiate the SSL protocol
>>parameters with the
>>client. For this mod_ssl has to consult the
>>configuration of the virtual
>>server (for instance it has to look for the cipher
>>suite, the server
>>certificate, etc.). But in order to dispatch to the
>>correct virtual
>>server Apache has to know the Host HTTP header
>>field. For this the HTTP
>>request header has to be read. This cannot be done
>>before the SSL
>>handshake is finished. But the information is
>>already needed at the SSL
>>handshake phase. Bingo!
>>
>>We can't use SSL with virtual hosts ( name-based /
>>IP-based ) ?
>>
>>So, can you help me more ?
>>
>>Thanks,
>>
>>kaushik kanni wrote:
>>
>>
>>>Hi, please note my suggestion
>>>You have to mention the port number along when u
>>>mention the IP for the virtual host
>>>Ex: <VirtualHost 192.168.200.1>
>>>Should be set as <VirtualHost 192.168.200.1:80>
>>>and for SSL
>>><VirtualHost 192.168.200.1:443>
>>>
>>>Best reagards
>>>
>>>--- EdwardSPL@ita.org.mo wrote:
>>>
>>>>Hello,
>>>>
>>>>This my setting of virtual-host :
>>>>
>>>><VirtualHost 192.168.200.1>
>>>>DocumentRoot "/home/domain1/html"
>>>>ServerName domain1.com
>>>>ServerAdmin root@@domain1.com
>>>><Directory "/home/domain1/html">
>>>> Options Indexes Includes FollowSymLinks
>>>>
>>MultiViews
>>
>>>>ExecCGI
>>>> AllowOverride All
>>>> Order allow,deny
>>>> Allow from all
>>>></Directory>
>>>>ErrorLog /var/log/httpd/domian1-error.log
>>>>CustomLog /var/log/httpd/domain1-access.log
>>>>
>>common
>>
>>>></VirtualHost>
>>>>
>>>><VirtualHost 192.168.200.1>
>>>>DocumentRoot "/home/domain1/html"
>>>>ServerName www.domain1.com
>>>>ServerAdmin root@domain1.com
>>>><Directory "/home/domain1/html">
>>>> Options Indexes Includes FollowSymLinks
>>>>
>>MultiViews
>>
>>>>ExecCGI
>>>> AllowOverride All
>>>> Order allow,deny
>>>> Allow from all
>>>></Directory>
>>>>ErrorLog /var/log/httpd/domian1-error.log
>>>>CustomLog /var/log/httpd/domain1-access.log
>>>>
>>common
>>
>>>></VirtualHost>
>>>>
>>>># SSL :
>>>>
>>>><IfDefine SSL>
>>>><VirtualHost 192.168.200.1>
>>>>DocumentRoot "/home/domain2/html"
>>>>ServerName domain2.com
>>>>ServerAdmin root@domain2.com
>>>><Directory "/home/domain2/html">
>>>> Options Indexes Includes FollowSymLinks
>>>>
>>MultiViews
>>
>>>>ExecCGI
>>>> AllowOverride All
>>>> Order allow,deny
>>>> Allow from all
>>>></Directory>
>>>>ErrorLog /var/log/httpd/domian2-error.log
>>>>CustomLog /var/log/httpd/domain2-access.log
>>>>
>>common
>>
>>>>SSLEngine on
>>>>SSLCipherSuite
>>>>
>>>>
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> 
>>>>SSLCertificateFile
>>>>/usr/local/apache/conf/ssl.crt/server.crt
>>>>SSLCertificateKeyFile
>>>>/usr/local/apache/conf/ssl.key/server.key
>>>><Files ~ "\.(cgi|shtml|phtml|php3?)$">
>>>>    SSLOptions +StdEnvVars
>>>></Files>
>>>><Directory "/usr/local/apache/cgi-bin">
>>>>    SSLOptions +StdEnvVars
>>>></Directory>
>>>>SetEnvIf User-Agent ".*MSIE.*" \
>>>>         nokeepalive ssl-unclean-shutdown \
>>>>         downgrade-1.0 force-response-1.0
>>>>CustomLog /usr/local/apache/logs/upp-ssl.log \
>>>>          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x
>>>>\"%r\" %b"
>>>></VirtualHost>
>>>></IfDefine>
>>>>
>>>><IfDefine SSL>
>>>><VirtualHost 192.168.200.1>
>>>>DocumentRoot "/home/domain2/html"
>>>>ServerName www.domain2.com
>>>>ServerAdmin root@domain2.com
>>>><Directory "/home/domain2/html">
>>>> Options Indexes Includes FollowSymLinks
>>>>
>>MultiViews
>>
>>>>ExecCGI
>>>> AllowOverride All
>>>> Order allow,deny
>>>> Allow from all
>>>></Directory>
>>>>ErrorLog /var/log/httpd/domian2-error.log
>>>>CustomLog /var/log/httpd/domain2-access.log
>>>>
>>common
>>
>>>>SSLEngine on
>>>>SSLCipherSuite
>>>>
>>>>
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> 
>>>>SSLCertificateFile
>>>>/usr/local/apache/conf/ssl.crt/server.crt
>>>>SSLCertificateKeyFile
>>>>/usr/local/apache/conf/ssl.key/server.key
>>>><Files ~ "\.(cgi|shtml|phtml|php3?)$">
>>>>    SSLOptions +StdEnvVars
>>>></Files>
>>>><Directory "/usr/local/apache/cgi-bin">
>>>>    SSLOptions +StdEnvVars
>>>></Directory>
>>>>SetEnvIf User-Agent ".*MSIE.*" \
>>>>         nokeepalive ssl-unclean-shutdown \
>>>>         downgrade-1.0 force-response-1.0
>>>>CustomLog /usr/local/apache/logs/upp-ssl.log \
>>>>          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x
>>>>\"%r\" %b"
>>>></VirtualHost>
>>>>
>>>>error_log file :
>>>>
>>>>[Mon Aug  5 01:28:01 2002] [warn] VirtualHost
>>>>192.168.200.1:80 overlaps
>>>>with VirtualHost 192.168.200.1:80, the first has
>>>>precedence, perhaps you
>>>>need a NameVirtualHost directive
>>>>[Mon Aug  5 01:28:01 2002] [warn] VirtualHost
>>>>192.168.200.1:80 overlaps
>>>>with VirtualHost 192.168.200.1:80, the first has
>>>>precedence, perhaps you
>>>>need a NameVirtualHost directive
>>>>[Mon Aug  5 01:28:01 2002] [warn] VirtualHost
>>>>192.168.200.1:80 overlaps
>>>>with VirtualHost 192.168.200.1:80, the first has
>>>>precedence, perhaps you
>>>>need a NameVirtualHost directive
>>>>[Mon Aug  5 01:28:01 2002] [crit] (98)Address
>>>>
> === message truncated ===
> 
> 
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 




---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message