We have purchased a VeriSign Certificate Class 3 for our webserver. Its installed and working
I opened some IP addresses on our firewall allowing port 443 and client inside our network our able to visit the website and revoke the certificate.
Now when the users access the web page it give the error. After some troubleshooting I realized VeriSign had changed the IP address and client can't get through the firewall as the IP Address is not listed in the list of IP's allowed to get through
So my question is, how do I get clients to see VeriSign without
opening the whole server to the internet, for obvious security reasons, so it
can see the revoked list on verisign.com using only IP Addresses?