Solved

HELP!  Change to exclusive IP to enable an SSL certificate causing nameserver problems

Posted on 2008-10-28
6
769 Views
Last Modified: 2013-12-25
I am using a dedicated Linux server with Plesk Control Panel through GoDaddy.  I am trying to enable my first SSL certificate which requres an exclusive IP address.  I am running a nameserver on the dedicated Linux machine and (I think) am running into nameserver problems with the new IP address.  Here is the layout:

ns1.domain.com.   A   Shared-IP-Address-1
ns2.domain.com.   A   Shared-IP-Address-1

TYPICAL DOMAIN SETUP THAT WORKS RIGHT NOW FOR SHARED IP:
domain2.com.   A   Shared-IP-Address-1
domain2.com.   NS   ns1.domain.com.
domain2.com.   NS   ns2.domain.com.

THIS DNS SETUP DOESN'T WORK FOR EXCLUSIVE IP:
domain3.com.   A   Exclusive-IP-Address-2
domain3.com.   NS   ns1.domain.com.
domain3.com.   NS   ns2.domain.com.


Every domain hosted on the shared IP (Shared-IP-Address-1) has been working great.  Will my nameserver only point to domains on the shared IP since it is pointing to that IP only?
0
Comment
Question by:matt1237
  • 2
  • 2
  • 2
6 Comments
 
LVL 2

Author Comment

by:matt1237
Comment Utility
Even a partial answer would help me!
0
 
LVL 51

Assisted Solution

by:ahoffmann
ahoffmann earned 250 total points
Comment Utility
hmm, don't realy understand what you mean/what's your problem ...

Anyway, if I assume that you want to have different FQDN on the same IP and each with its own SSL cert, that's not possible with apache (not sure for other web servers, but I doubt)
0
 
LVL 13

Assisted Solution

by:Rowley
Rowley earned 250 total points
Comment Utility
I don't really get what you're trying to convey either, but if its any help you can have an SSL enabled virtual host reside on the same address as a namevirtualhost. i.e:

SSL IP Virtual Host:
www.monkeys.com --> 1.2.3.4

Name Virtual Host:
www.badgers.com --> 1.2.3.4
www.chipmunks.com --> 1.2.3.4
www.squirrels.com --> 1.2.3.4


You're only ever going to be able to serve ssl for a single common name without warnings, unless you get a wildcard cert.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 51

Assisted Solution

by:ahoffmann
ahoffmann earned 250 total points
Comment Utility
apache's name-based virtual host can only serve *one* SSL enabled virtual host, that has nothing to do with the cert
0
 
LVL 13

Assisted Solution

by:Rowley
Rowley earned 250 total points
Comment Utility
Agreed. I did specify the SSL portion would be on an IP virtual host.
0
 
LVL 2

Accepted Solution

by:
matt1237 earned 0 total points
Comment Utility
You guys are really sharp in mentioning things like... what's wrong here?
Something very humbling happened.  DNS propigated :(  Since I am running my own nameserver, I was under the false assumtion that changes I make on my nameserver would be seen almost instantly across the webscape.  I now realize, after a long discussion with a DNS guru friend of mine, that I am (surprise) restricted to the same propigation issies as every other nameserver.
The one thing that I can do to see my server changes instantly (at least locally on my desktop) is to make my nameserver a resolving nameserver and use it as the primary nameserver for my local desktop.  This will ensure that I don't have to wait for my ISP to update the cache on their DNS server(s) before I see results made on my GoDaddy server.
0

Featured Post

Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

Join & Write a Comment

In Solr 4.0 it is possible to atomically (or partially) update individual fields in a document. This article will show the operations possible for atomic updating as well as setting up your Solr instance to be able to perform the actions. One major …
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now