Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > ISPConfig 3 Priority Support

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 1st May 2013, 16:29
g00fy g00fy is offline
Junior Member
 
Join Date: Apr 2013
Posts: 8
Thanks: 1
Thanked 0 Times in 0 Posts
Default OpenVPN portshare not working correct

Hello,

I setup a new server with ISPCONFIG and setup the nginx webserver. I changed the port nginx listening on for ssl connections to 44334 and setup openvpn with the port-share option to listen on 443 for incoming connections and redirect it to nginx when it is https traffic.
This works well on a server without ISPConfig, but on this server it always connects to the first enabled virtual server that is listening on port 44334. and not to the website the browser is asking for.

Is there something in this setup that is preventing using the port-share option of openvpn?
Reply With Quote
Sponsored Links
  #2  
Old 2nd May 2013, 16:37
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,751 Times in 2,581 Posts
Default

I guess OpenVPN isn't forwarding the requested hostname to the web server.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 3rd May 2013, 00:11
g00fy g00fy is offline
Junior Member
 
Join Date: Apr 2013
Posts: 8
Thanks: 1
Thanked 0 Times in 0 Posts
Default

It seems it doesn't have anything to do with openvpn after all. Sorry for this.

What is happening is when you connect to a website that wasn't configured to use ssl, but try to connect via https://, it connects to the first vhost that is configured to use ssl.
May be this is by design, but I would like it more to get no connection at all (or maybe a page saying there is no website on this url).
Would something like this be posiible?
Reply With Quote
  #4  
Old 3rd May 2013, 08:48
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 37,015
Thanks: 840
Thanked 5,652 Times in 4,461 Posts
 
Default

Quote:
What is happening is when you connect to a website that wasn't configured to use ssl, but try to connect via https://, it connects to the first vhost that is configured to use ssl.
Thats ok and the default behaviour of webservers. If a vhost is requested that does not exist, the first vhost on the saem IP is shown.

Quote:
May be this is by design, but I would like it more to get no connection at all (or maybe a page saying there is no website on this url).
Would something like this be posiible?
Add a default vhost which has ssl enabled by ading a site with the domain "000default.tld".It does not matter that the domain exists, it just ahs to be the first in alphabetical order on your servers. Or you ensure that ssl websites do not share the IP address with other sites.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Can't Ping over VPN RoMiONeT Server Operation 2 4th July 2010 01:19
https access to remote OpenVPN clients via OpenVPn server chillifire Installation/Configuration 12 2nd June 2009 04:51
IMAP-Problem: directory is not owned by the correct uid or gid st2xo Installation/Configuration 8 11th December 2008 12:12
how openVPN uses NDIS API on linux tarun@howtoforge Suggest HOWTO 0 3rd June 2008 10:22
OpenVPN: Building and Integrating Virtual Private Networks JimmyKarumalil Suggest HOWTO 0 24th May 2006 13:23


All times are GMT +2. The time now is 08:38.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.