Problem with RapidSSL + ISPConfig 3 + OpenVZ + Debian + MyDNS
· OVH dedicated server with Debian 6 + Proxmox 2. IP = 0.0.0.0
· OpenVZ VM with Debian 6 (kernel 2.6.32-16-pve), ISPConfig 220.127.116.11, Apache 2.2.16 and MyDNS 18.104.22.168. IP = 22.214.171.124
· Last version of CSF+LFD installed on both machines (with IP 126.96.36.199 allowed).
ISPConfig 3 is working for several years with a RapidSSL Wildcard certificate installed manually like default-ssl. This certificate is associated to domain1.es and IP 188.8.131.52
Now, I want use a standard RapidSSL in domain2.es (whose DNS are configured in OVH Manager).
I bought a OVH IPv4 FailOver (IP = 184.108.40.206).
I added IP 220.127.116.11 to my interfaces and I restarted my network (following the Manual's chapter How Do I Manually Configure New IP Addresses On My System?):
# vi /etc/network/interfaces
iface venet0:1 inet static
venet0:1 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:18.104.22.168 P-t-P:22.214.171.124 Bcast:0.0.0.0 Mask:255.255.255.255
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
I added 126.96.36.199 to ISPConfig 3 (System -> Server IP Addresses):
IP Address: 188.8.131.52
HTTP NameVirtualHost: yes
HTTP Ports: 80,443
I created the DNS zone of domain2.es and change 184.108.40.206 records to 220.127.116.11
I created the website of domain2.es:
Auto-Subdomain: None or www (I tested both)
I filled the SSL fields (with a-z characters), selected "Create certificate" and saved.
And I restarted Apache & MyDNS.
At this moment:
· http://domain2.es displays http://domain1.es (like a domain alias).
· https://domain2.es says Forbidden. You don't have permission to access / on this server.
# tail -f /var/log/apache2/error.log
[...] [error] [...] client denied by server configuration: /var/www/domain2.es/web/
No error in:
Here is the problem:
Login Proxmox -> Datacenter -> My Dedicated Server (0.0.0.0) -> My OpenVZ VM (18.104.22.168) -> Network -> Add -> IP address (venet) -> IP address: 22.214.171.124 -> Add
Now, http and https are OK (SSL self-signed, at the moment).
After consume all reissues of first RapidSSL certificate, I managed to run a second RapidSSL certificate following these steps:
|All times are GMT +2. The time now is 11:52.|
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.