Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: loadbalanced http and ssl
Operating Systems Solaris loadbalanced http and ssl Post 302266742 by upengan78 on Thursday 11th of December 2008 01:24:11 AM
Old 12-11-2008
loadbalanced http and ssl
Hello,

I have 2 solaris 10 systems which are behind a load balancer serving 50% requests each. Both systems are installed with an application which run apache http server on port 80 and 443. both systems use the same virtual hostname like (app.domain.com). So when users hit http://app.domain.com in their browsers the get the site served by listeners from any of the systems.

now I want add a CNAME so that if users hit http://application.domain.com then site should work for them. I am sure it will work for http.

How about https://application.domain.com?

I wonder what CN should be used to generate CSR for the both systems running apache web server with same Virtualhostname(which here is app.domain.com and I don't want to change this to application.domain.com)

I guess both system`s apache should have same SSL certificate. How is this generally done for systems behind load balancer.

If I am not wrong, there will also be ssl key and Certificate required on Load Balancer Device itself.

Can we have a certificate which can be used for 2 hostnames at same time like app.domain.com and also application.domain.com or one can use *.domain.com wild card certs on all 3 systems or just copying one ssl certificate received from CA generated by one system's CSR can be copied to all 3 systems (2 server + 1 load balancer) with corresponding SSL server key?

Other than this I have a general question:
I have a ssl certificate for a hostname valid for 2 more years but I am putting a new hardware and new installation of web server, can I just transfer the old key and certificate to new server while I want new server take over the old one. Please let me know


Thanks
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

implicit ssl vs explicit ssl

Can someone explain the difference between the two. Thanks (1 Reply)
Discussion started by: jerardfjay
1 Replies

2. UNIX for Advanced & Expert Users

Ssl

What is the key diffirence between rsa and dsa. what is the maximum bit size to create the rsa as well as dsa key file. what is advantage of each over each-other? Thanks ______ Satya (2 Replies)
Discussion started by: satya009
2 Replies

3. UNIX for Dummies Questions & Answers

to enable POP3(ssl) and SMTP(ssl) in Squid

i have configured Squid proxy server in Fedora 8 with two network interfaces. HTTP, HTTPS, FTP are working fine but we are unable to download mails using mail clients from mail server with POP3(ssl) and SMTP(ssl). so please someone help us how to enable pop and smtp in Squid. (1 Reply)
Discussion started by: praneel2k
1 Replies

4. Web Development

Apache, cgi script run twice when ssl, once when not ssl

I have interesting problem. https:/host/some/x.cgi - this script has run twice when I call this url But http:/host/some/x.cgi work fine, only once. Output is text/plain. If I change output format to the Content-type text/html, then both urls works fine - executed only once. (2 Replies)
Discussion started by: kshji
2 Replies

5. Programming

sending http url through http socket programming..

hi am senthil am developing a software to send and receive SMS using HTTP connection first of all am forming a URL and sending that URL to a remote server using my Client Program i send that url through Socket(using Send() Function) if i send more than one URL one by one using the same... (0 Replies)
Discussion started by: senkerth
0 Replies

6. Shell Programming and Scripting

sending http url through http socket programming..

hi am senthil am developing a software to send and receive SMS using HTTP connection first of all am forming a URL and sending that URL to a remote server using my Client Program i send that url through Socket(using Send() Function) if i send more than one URL one by one using the same... (4 Replies)
Discussion started by: senkerth
4 Replies

7. Shell Programming and Scripting

Perl Http Post over SSL

Hello, I'm using a tunnel broker for tunneling IPv6 traffic, as my ISP does not support it natively. As of recent i switched from Hurricane Electrics tunnel broker to Sixxs. Whenever my IP address changes, i have to manually log in and change it. This is a bit cumbersome so i was thinking of... (0 Replies)
Discussion started by: regexp
0 Replies

8. Web Development

HTTP Headers Reference: HTTP Status-Codes

Hypertext Transfer Protocol -- HTTP/1.1 for Reference - HTTP Headers 10 Status Code Definitions Each Status-Code is described below, including a description of which method(s) it can follow and any metainformation required in the response. (1 Reply)
Discussion started by: Neo
1 Replies

9. Shell Programming and Scripting

awk script to find time difference between HTTP PUT and HTTP DELETE requests in access.log

Hi, I'm trying to write a script to determine the time gap between HTTP PUT and HTTP DELETE requests in the HTTP Servers access log. Normally client will do HTTP PUT to push content e.g. file_1.txt and 21 seconds later it will do HTTP DELETE, but sometimes the time varies causing some issues... (3 Replies)
Discussion started by: Juha
3 Replies

10. Linux

Apache wildcard ssl on subdomain serves same page for non ssl virtualhosts

Issue observed: I have configured ng.my-site.com using widlcard ssl cert. When I hit https://www.my-site.com it loads ng.my-site.com website! please advise if I missed any concept / configs... Thank you! httpd.conf <VirtualHost *:80> ServerName www.my-site.com ServerAdmin... (0 Replies)
Discussion started by: ashokvpp
0 Replies

LEARN ABOUT SUNOS

delete-http-listener

asadmin-delete-http-listener(1AS)				   User Commands				 asadmin-delete-http-listener(1AS)

NAME

       asadmin-delete-http-listener, delete-http-listener - removes the HTTP listener

SYNOPSIS

       delete-http-listener  --user admin_user[--password admin_password] [--host localhost] [--port 4848] [--secure|-s] [--passwordfile filename]
       [--terse=false] [--echo=false] [--interactive=true] httplistener_ID

       Removes the HTTP listeners. This command is supported in remote mode only.

OPTIONS

       --user		       authorized domain application server administrative username.

       --password	       password to administer the domain application server.

       --host		       machine name where the domain application server is running.

       --port		       port number of the domain application server listening for administration requests.

       --secure 	       if true, uses SSL/TLS to communicate with the domain application server.

       --passwordfile	       file containing the domain application server password.

       --terse		       indicates that any output data must be very concise, typically avoiding human-friendly sentences and favoring well-
			       formatted data for consumption by a script. Default is false.

       --echo		       setting to true will echo the command line statement on the standard output. Default is false.

       --interactive	       if set to true (default), only the required password options are prompted.

OPERANDS

       listener_id	       listener ID of the HTTP listener.

       Example 1: Using delete-http-listener

       asadmin> delete-http-listener --user admin1
       --password adminadmin1 --host pigeon --port 5001 sampleListener
       Deleted http listener with id = sampleListener

       Where: sampleListener is the HTTP listener deleted.

EXIT STATUS

       0		       command executed successfully

       1		       error in executing the command

       asadmin-create-http-listener(1AS), asadmin-list-http-listeners(1AS)

J2EE 1.4 SDK							    March 2004					 asadmin-delete-http-listener(1AS)
All times are GMT -4. The time now is 04:45 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy