Solved

Enable SSL / Forwarding

Posted on 2011-09-11
10
420 Views
Last Modified: 2012-05-12
Hi Guys,

I've a tricky question here and would greatly appreciate your assistance.

There is a request from a user to Enable SSL on https://intranet.xyz.com.au (company name hidden for privacy purposes). The DNS record is currently setup to the point the above path to 172.20.102.33.

However unchanging the above the user has requested that the path should now be handled by another server (172.20.113.29)

Could you please suggest a solution.

Many thanks
0
Comment
Question by:japitsolution
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
10 Comments
 
LVL 21

Accepted Solution

by:
Papertrip earned 250 total points
ID: 36520744
All you need to do is change the A record for intranet.xyz.com.au in DNS to point to the new IP.

From the info you provided, this is not related to SSL, just DNS.
0
 

Author Comment

by:japitsolution
ID: 36520767
Any other suggestions apart from changing the initial DNS record.

Perhaps Conditional forwarding whereby the request for only https://intranet.xyz.com.au is handled by 172.20.113.29

Thanks
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36520826
That's a pretty hack-y way to approach the situation.  Is there a specific reason why non-https traffic for intranet.xyz.com.au needs to stay on 172.20.113.29 ?
0
How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

 
LVL 21

Expert Comment

by:Papertrip
ID: 36520830
woops the IP in my last reply should be 172.20.102.33
0
 
LVL 13

Assisted Solution

by:khairil
khairil earned 250 total points
ID: 36520936
Hi,

It is ok to change the IP address of the server, but make sure is still use the same name, like over here intranet.xyz.com.au. You just need to install the cert on that new server.

But if name changed and you are not using wildcard cert then you have to aquire new cert for new name. You will need to generate new CRS from new machine, buy new cert base on the CSR and install that cert on your webserver.
0
 
LVL 13

Expert Comment

by:khairil
ID: 36520943
On DNS part, it is pretty easy to do, you just need to change the A record of intranet.xyz.com.au to new IP address only, if you not control the DNS then you should ask the authority who have access to it to change to reflect new IP.

The hard part is on the server, the server admin have to configure for the cert to work on the new server,  like I said above.
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526768
No assisted solution?  My answer was first and just as valid as what you chose for the Accepted Solution...
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36526976
I request that #3 be pursued, with the following point distribution:

Accepted:  http:#36520744
Assisted: http:#36520936
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Office 365 Public IP configuration on DNS ? 7 84
Reverse DND setup 6 57
Configuring DNS Round Robin in Windows DNS server ? 8 127
DNS/WINS in a domain 10 91
This article is intended as an extension of a blog on Aging and Scavenging by the MS Enterprise Networking Team. In brief, Scavenging is used as follows: Each record in a zone which has been dynamically registered with an MS DNS Server will have…
I will assume you are running a non-server version of some sort of Windows throughout this article. There are many flavors of Windows since Windows Server 2000 - 2008, XP Home & Pro, Vista Home & Pro, and Windows 7 Starter, Home, Pro, Ultimate, etc.…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question