Solved

Enable SSL / Forwarding

Posted on 2011-09-11
10
428 Views
Last Modified: 2012-05-12
Hi Guys,

I've a tricky question here and would greatly appreciate your assistance.

There is a request from a user to Enable SSL on https://intranet.xyz.com.au (company name hidden for privacy purposes). The DNS record is currently setup to the point the above path to 172.20.102.33.

However unchanging the above the user has requested that the path should now be handled by another server (172.20.113.29)

Could you please suggest a solution.

Many thanks
0
Comment
Question by:japitsolution
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
10 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 250 total points
ID: 36520744
All you need to do is change the A record for intranet.xyz.com.au in DNS to point to the new IP.

From the info you provided, this is not related to SSL, just DNS.
0
 

Author Comment

by:japitsolution
ID: 36520767
Any other suggestions apart from changing the initial DNS record.

Perhaps Conditional forwarding whereby the request for only https://intranet.xyz.com.au is handled by 172.20.113.29

Thanks
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36520826
That's a pretty hack-y way to approach the situation.  Is there a specific reason why non-https traffic for intranet.xyz.com.au needs to stay on 172.20.113.29 ?
0
What, When and Where - Security Threats from Q1

Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.

 
LVL 21

Expert Comment

by:Papertrip
ID: 36520830
woops the IP in my last reply should be 172.20.102.33
0
 
LVL 13

Assisted Solution

by:khairil
khairil earned 250 total points
ID: 36520936
Hi,

It is ok to change the IP address of the server, but make sure is still use the same name, like over here intranet.xyz.com.au. You just need to install the cert on that new server.

But if name changed and you are not using wildcard cert then you have to aquire new cert for new name. You will need to generate new CRS from new machine, buy new cert base on the CSR and install that cert on your webserver.
0
 
LVL 13

Expert Comment

by:khairil
ID: 36520943
On DNS part, it is pretty easy to do, you just need to change the A record of intranet.xyz.com.au to new IP address only, if you not control the DNS then you should ask the authority who have access to it to change to reflect new IP.

The hard part is on the server, the server admin have to configure for the cert to work on the new server,  like I said above.
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526768
No assisted solution?  My answer was first and just as valid as what you chose for the Accepted Solution...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526976
I request that #3 be pursued, with the following point distribution:

Accepted:  http:#36520744
Assisted: http:#36520936
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have a multi-homed DNS setup in windows, you can have issues with connectivity to the server that hosts the DNS services (or even member servers of your domain if this same DNS server is a DC). This is because windows registers all of its IPs…
Resolve DNS query failed errors for Exchange
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question