[olug] vhosts required?- HTTP on 80 and HTTPS on 433 it works!

Brian Wiese bwiese at cotse.com
Sun Sep 28 22:45:10 UTC 2003

Previous message: [olug] apache/mod_ssl httpd.conf - HTTP on 80 and HTTPS on 433 it works!
Next message: [olug] info req: texas microsystems p6000fx
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

FYI- without virtual hosts configured, but all else being the same
(BindAddress and NameVirtualHost commented out as well)... HTTP works, but
HTTPS gives an error to the client (same thing I was getting before I
believe), and the ssl error log says:

[Sun Sep 28 17:40:28 2003] [error] [client 192.168.1.102] Invalid method
in request \x80g\x01\x03

So, yeah, it seems like the virtual hosts are needed, one for each (IP:80
and IP:443) or it "just doesn't work right" in my experience.  If anyone
has done it w/o virtual hosts, I would like to see the config.

peace, cheers
Brian

On Sun, 28 Sep 2003 10:18:17 -0500
Brian Wiese <bwiese at cotse.com> wrote:

|Thanks Dan, good idea... I finally got it working.  For the record, the
|basics one needs in their httpd.conf are:
|
|just a refresh... pertinent parts of my global httpd.conf:
|Port 80
|#Listen 192.168.1.120:80
|
|<IfModule mod_ssl.c>
|#Listen 192.168.1.120:443
|Listen 80
|Listen 443
|
|AddType application/x-x509-ca-cert .crt
|AddType appliation/x-pkcs7-crl .crl
|
|#SSLEngine on
|SSLProtocol all
|SSLCipherSuite HIGH:MEDIUM
|SSLPassPhraseDialog builtin
|SSLSessionCache dbm:/var/run/ssl_cache
|SSLSessionCacheTimeout 300
|SSLMutex file:/var/run/ssl_mutex
|SSLRandomSeed startup builtin
|SSLRandomSeed connect builtin
|SSLLog /var/log/apache/ssl_engine_log
|SSLLogLevel warn
|</IfModule>
|
|BindAddress 192.168.1.120
|NameVirtualHost 192.168.1.120
|
|<Virtualhost 192.168.1.120:80>
|# normal vhost type stuff, if you want it, read the docs.
|    ServerAdmin bwiese at nospam.mail.unomaha.edu
|    DocumentRoot /var/www/acm
|    ServerName acm
|    ErrorLog /var/log/apache/acm-vhost-error.log
|    CustomLog /var/log/apache/acm-vhost-access.log common
|SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
|</VirtualHost>
|
|<Virtualhost 192.168.1.120:443>
|# normal vhost type stuff, if you want it, read the docs.
|SSLEngine On
|SSLCertificateFile conf/ssl.crt/server.crt
|SSLCertificateKeyFile conf/ssl.key/server.key
|SSLCACertificatePath conf/ssl.crt
|SSLCACertificateFile conf/ssl.crt/ca.crt
|SSLCARevocationPath conf/ssl.crl
|
|    ServerAdmin bwiese at nospam.mail.unomaha.edu
|    DocumentRoot /var/www/acm
|    ServerName acm
|    ErrorLog /var/log/apache/acm-vhost-error.log
|    CustomLog /var/log/apache/acm-vhost-access.log common
|SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
|</VirtualHost>
|
|-------------
|just make sure to have "Port 80" in the global as well, else something
|like this:#Port 80
|#Listen 192.168.1.120:80
|BindAddress 192.168.1.120
|
|will give you errors like this:
|[Sun Sep 28 09:59:29 2003] [error] VirtualHost 192.168.1.120:443 --
|mixing* ports and non-* ports with a NameVirtualHost address is not
|supported, proceeding with undefined results[Sun Sep 28 09:59:29 2003]
|[error] VirtualHost 192.168.1.120:80 -- mixing * ports and non-* ports
|with a NameVirtualHost address is not supported, proceeding with
|undefined results--------------
|thanks again Dan, help greatly appreciated!!
|Next time I see you at the meeting or whatever, I owe you a
|drink/sandwich or something...
|
|peace, cheers
|Brian

Previous message: [olug] apache/mod_ssl httpd.conf - HTTP on 80 and HTTPS on 433 it works!
Next message: [olug] info req: texas microsystems p6000fx
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the OLUG mailing list