From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 30 04:18:49 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0307516A4CE
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 04:18:49 -0700 (PDT)
Received: from internet.potentialtech.com (h-66-167-251-6.phlapafg.covad.net
	[66.167.251.6])	by mx1.FreeBSD.org (Postfix) with ESMTP id B9FC043D5E
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Apr 2004 04:18:48 -0700 (PDT)
	(envelope-from wmoran@potentialtech.com)
Received: from potentialtech.com (pa-plum1c-102.pit.adelphia.net
	[24.53.179.102])	by internet.potentialtech.com (Postfix) with ESMTP
	id BA7AF69A7E; Fri, 30 Apr 2004 07:18:47 -0400 (EDT)
Message-ID: <40923594.6010401@potentialtech.com>
Date: Fri, 30 Apr 2004 07:16:36 -0400
From: Bill Moran <wmoran@potentialtech.com>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6) Gecko/20040422
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Remko Lodder <remko@elvandar.org>
References: <20040430051944.GA28108@skytrackercanada.com>
	<20040430103917.GA7205@lb.tenfour> <409232EE.6020800@elvandar.org>
In-Reply-To: <409232EE.6020800@elvandar.org>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: David Banning <david+dated+1083734386.829e4a@skytracker.ca>
cc: Dick Davies <rasputnik@hellooperator.net>
cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: two domain names - one IP - both SSL
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Apr 2004 11:18:49 -0000

Remko Lodder wrote:
> HEllo all,
> 
> Dick Davies wrote:
> 
>> * David Banning <david+dated+1083734386.829e4a@skytracker.ca> [0421 
>> 06:21]:
>>
>>> I am wondering how I could run SSL on two different domain names
>>> using just one IP address.
>>>
>>> I am using virtual hosting with apache.
>>>
>>> Is that possible?
>>
>> No. As one poster said (and contrary to half a dozen 'install apache'
>> posts), you can't do name-based multiple vhosts over ssl.
>>
>> The ssl session wraps the http session, so the server can't get
>> the host header until the session has started.
>>
>> <quote>
>> That's some catch, that catch 443.
>> It's the best there is.
>> </quote>
>>
>> You should in theory be able to do it on different ports, but
>> I haven't tried.
> 
> Can someone explain to me then, that i had different https sites?
> covering IDS networks/ mail networks etc?
> 
> I did that with <VirtualHost <ip>:443>
> Now then, that tended to work..
> 
> Imho, it is possible with VirtualHosts.

Do you have a different IP with each VirtualHost?  Because the original
poster specifically asked if he could host multiple SSL sites with the
same IP.

Now, I haven't dealt with this in a while, and technology changes all
the time, but the last time I did this, you needed a unique IP for each
SSL VirtualHost.

-- 
Bill Moran
Potential Technologies
http://www.potentialtech.com