Problem with RapidSSL + ISPConfig 3 + OpenVZ + Debian + MyDNS
· OVH dedicated server with Debian 6 + Proxmox 2. IP = 0.0.0.0
· OpenVZ VM with Debian 6 (kernel 2.6.32-16-pve), ISPConfig 188.8.131.52, Apache 2.2.16 and MyDNS 184.108.40.206. IP = 220.127.116.11
· Last version of CSF+LFD installed on both machines (with IP 18.104.22.168 allowed).
ISPConfig 3 is working for several years with a RapidSSL Wildcard certificate installed manually like default-ssl. This certificate is associated to domain1.es and IP 22.214.171.124
Now, I want use a standard RapidSSL in domain2.es (whose DNS are configured in OVH Manager).
I bought a OVH IPv4 FailOver (IP = 126.96.36.199).
I added IP 188.8.131.52 to my interfaces and I restarted my network (following the Manual's chapter How Do I Manually Configure New IP Addresses On My System?):
# vi /etc/network/interfaces
iface venet0:1 inet static
venet0:1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:184.108.40.206 P-t-P:220.127.116.11 Bcast:0.0.0.0 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
I added 18.104.22.168 to ISPConfig 3 (System -> Server IP Addresses):
IP Address: 22.214.171.124
HTTP NameVirtualHost: yes
HTTP Ports: 80,443
I created the DNS zone of domain2.es and change 126.96.36.199 records to 188.8.131.52
I created the website of domain2.es:
Auto-Subdomain: None or www (I tested both)
I filled the SSL fields (with a-z characters), selected "Create certificate" and saved.
And I restarted Apache & MyDNS.
At this moment:
· http://domain2.es displays http://domain1.es (like a domain alias).
· https://domain2.es says Forbidden. You don't have permission to access / on this server.
# tail -f /var/log/apache2/error.log
[...] [error] [...] client denied by server configuration: /var/www/domain2.es/web/
No error in:
Here is the problem:
Login Proxmox -> Datacenter -> My Dedicated Server (0.0.0.0) -> My OpenVZ VM (184.108.40.206) -> Network -> Add -> IP address (venet) -> IP address: 220.127.116.11 -> Add
Now, http and https are OK (SSL self-signed, at the moment).
After consume all reissues of first RapidSSL certificate, I managed to run a second RapidSSL certificate following these steps:
|All times are GMT +2. The time now is 19:44.|
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.