Solved

HELP!  Change to exclusive IP to enable an SSL certificate causing nameserver problems

Posted on 2008-10-28
6
771 Views
Last Modified: 2013-12-25
I am using a dedicated Linux server with Plesk Control Panel through GoDaddy.  I am trying to enable my first SSL certificate which requres an exclusive IP address.  I am running a nameserver on the dedicated Linux machine and (I think) am running into nameserver problems with the new IP address.  Here is the layout:

ns1.domain.com.   A   Shared-IP-Address-1
ns2.domain.com.   A   Shared-IP-Address-1

TYPICAL DOMAIN SETUP THAT WORKS RIGHT NOW FOR SHARED IP:
domain2.com.   A   Shared-IP-Address-1
domain2.com.   NS   ns1.domain.com.
domain2.com.   NS   ns2.domain.com.

THIS DNS SETUP DOESN'T WORK FOR EXCLUSIVE IP:
domain3.com.   A   Exclusive-IP-Address-2
domain3.com.   NS   ns1.domain.com.
domain3.com.   NS   ns2.domain.com.


Every domain hosted on the shared IP (Shared-IP-Address-1) has been working great.  Will my nameserver only point to domains on the shared IP since it is pointing to that IP only?
0
Comment
Question by:matt1237
  • 2
  • 2
  • 2
6 Comments
 
LVL 2

Author Comment

by:matt1237
ID: 22827363
Even a partial answer would help me!
0
 
LVL 51

Assisted Solution

by:ahoffmann
ahoffmann earned 250 total points
ID: 22829285
hmm, don't realy understand what you mean/what's your problem ...

Anyway, if I assume that you want to have different FQDN on the same IP and each with its own SSL cert, that's not possible with apache (not sure for other web servers, but I doubt)
0
 
LVL 13

Assisted Solution

by:Rowley
Rowley earned 250 total points
ID: 22829356
I don't really get what you're trying to convey either, but if its any help you can have an SSL enabled virtual host reside on the same address as a namevirtualhost. i.e:

SSL IP Virtual Host:
www.monkeys.com --> 1.2.3.4

Name Virtual Host:
www.badgers.com --> 1.2.3.4
www.chipmunks.com --> 1.2.3.4
www.squirrels.com --> 1.2.3.4


You're only ever going to be able to serve ssl for a single common name without warnings, unless you get a wildcard cert.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 51

Assisted Solution

by:ahoffmann
ahoffmann earned 250 total points
ID: 22829389
apache's name-based virtual host can only serve *one* SSL enabled virtual host, that has nothing to do with the cert
0
 
LVL 13

Assisted Solution

by:Rowley
Rowley earned 250 total points
ID: 22829405
Agreed. I did specify the SSL portion would be on an IP virtual host.
0
 
LVL 2

Accepted Solution

by:
matt1237 earned 0 total points
ID: 22830531
You guys are really sharp in mentioning things like... what's wrong here?
Something very humbling happened.  DNS propigated :(  Since I am running my own nameserver, I was under the false assumtion that changes I make on my nameserver would be seen almost instantly across the webscape.  I now realize, after a long discussion with a DNS guru friend of mine, that I am (surprise) restricted to the same propigation issies as every other nameserver.
The one thing that I can do to see my server changes instantly (at least locally on my desktop) is to make my nameserver a resolving nameserver and use it as the primary nameserver for my local desktop.  This will ensure that I don't have to wait for my ISP to update the cache on their DNS server(s) before I see results made on my GoDaddy server.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Skype for Business video calls drops 2 58
Setting up a VPN 60 137
looking for a program or router to monitor internet connection 4 49
Replication dns zone issue 2 24
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

786 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question