Solved: Re: Multiple certs with one External IP?

davidg_ · ‎10-02-2008

I trying to setup certs for different hostnames for External users using 1 external IP. I see how it does it with Virtual ports but that would mean I would have to map 1 public IP to 1 virtual port. I only want to use 1 public IP for multiple certs. I have 2 sign-in's right now. 1) *.abc.com 2) sec.def.com both are using public IP x.x.x.100

Currently I the wildcard cert associated with the external port and of course *.abc.com works fine and I get a cert error for sec.def.com. DNS wise, both of these domains are pointing to the same public IP right now x.x.x.100

How do I use multiple certs in this scenario?

Tigeli_ · ‎10-05-2008

You can't use multiple certs for one IP-address, it's a technical restriction. The SSL-encrypted tunnel is setup before the IVE & client start speaking HTTP to each other. So IVE has to bind cert's per IP-address.

View solution in original post

Tigeli_ · ‎10-05-2008

You can't use multiple certs for one IP-address, it's a technical restriction. The SSL-encrypted tunnel is setup before the IVE & client start speaking HTTP to each other. So IVE has to bind cert's per IP-address.

imtravis_ · ‎10-06-2008

Tigeli is correct, one Cert per IP (and/or VIP).

davidg_ · ‎10-06-2008

yeah, that's what I figured, thanks