Solved

Enable SSL / Forwarding

Posted on 2011-09-11
10
407 Views
Last Modified: 2012-05-12
Hi Guys,

I've a tricky question here and would greatly appreciate your assistance.

There is a request from a user to Enable SSL on https://intranet.xyz.com.au (company name hidden for privacy purposes). The DNS record is currently setup to the point the above path to 172.20.102.33.

However unchanging the above the user has requested that the path should now be handled by another server (172.20.113.29)

Could you please suggest a solution.

Many thanks
0
Comment
Question by:japitsolution
  • 5
  • 2
10 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 250 total points
ID: 36520744
All you need to do is change the A record for intranet.xyz.com.au in DNS to point to the new IP.

From the info you provided, this is not related to SSL, just DNS.
0
 

Author Comment

by:japitsolution
ID: 36520767
Any other suggestions apart from changing the initial DNS record.

Perhaps Conditional forwarding whereby the request for only https://intranet.xyz.com.au is handled by 172.20.113.29

Thanks
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36520826
That's a pretty hack-y way to approach the situation.  Is there a specific reason why non-https traffic for intranet.xyz.com.au needs to stay on 172.20.113.29 ?
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 21

Expert Comment

by:Papertrip
ID: 36520830
woops the IP in my last reply should be 172.20.102.33
0
 
LVL 13

Assisted Solution

by:khairil
khairil earned 250 total points
ID: 36520936
Hi,

It is ok to change the IP address of the server, but make sure is still use the same name, like over here intranet.xyz.com.au. You just need to install the cert on that new server.

But if name changed and you are not using wildcard cert then you have to aquire new cert for new name. You will need to generate new CRS from new machine, buy new cert base on the CSR and install that cert on your webserver.
0
 
LVL 13

Expert Comment

by:khairil
ID: 36520943
On DNS part, it is pretty easy to do, you just need to change the A record of intranet.xyz.com.au to new IP address only, if you not control the DNS then you should ask the authority who have access to it to change to reflect new IP.

The hard part is on the server, the server admin have to configure for the cert to work on the new server,  like I said above.
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526768
No assisted solution?  My answer was first and just as valid as what you chose for the Accepted Solution...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526976
I request that #3 be pursued, with the following point distribution:

Accepted:  http:#36520744
Assisted: http:#36520936
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question