SSL certificate

Discussion in 'Installation/Configuration' started by nickpieters, Dec 10, 2010.

  1. nickpieters

    nickpieters New Member


    I have some strange things going on here...

    Purchased ssl cert
    Certreq made with ispconfig
    Pasted cert in SSL cert
    Pasted bundle in bundle

    Now i also have another site running on the ispconfig, also with ssl enabled, but a self-signed one.

    Whenever i go to the site with the new ssl cert i got the cert of the other site (the self-signed one), and when i ignore the warning, i get "redirected" to the site with the new certificate.

    so with new cert = ok with old cert = nok --> ignore cert --> see site domain1.Be

    Hopelly my explenation is somehow clear enough.

    Anyone that could help me with this? Thx!
  2. nickpieters

    nickpieters New Member

  3. falko

    falko Super Moderator ISPConfig Developer

    Does that site have another IP address? Because you can have just one SSL website per IP address.
  4. nickpieters

    nickpieters New Member


    thx for your reply, really appreciate it.

    I have multiple public ip's, however the ispconfig has 1 internal ip.

    Is there something i should change/add?

    thank you
  5. falko

    falko Super Moderator ISPConfig Developer

    Yes, you must make the second SSL site use another internal IP. But the problem will be then that your router (you use a router, right?) can forward port 443 to just one internal IP.
  6. nickpieters

    nickpieters New Member

    I have multiple wan ip addresses, which are forwarded to the internal address.

    So what you are saying is that i could make more internal addresses?

    Forward the other wan ip to the new internal address.

    Is that something that can be done via the ispconfig panel, or do i need to make another ip addres in linux itself?

  7. falko

    falko Super Moderator ISPConfig Developer

    If you are on Debian/Ubuntu, this can be done in ISPConfig, but only if you have one NIC whose name is eth0. This is considered experimantal, so use it at your own risk. I recommend to configure this manually on the command line.

Share This Page