loadbalanced http and ssl


 
Thread Tools Search this Thread
Operating Systems Solaris loadbalanced http and ssl
# 1  
Old 12-11-2008
loadbalanced http and ssl

Hello,

I have 2 solaris 10 systems which are behind a load balancer serving 50% requests each. Both systems are installed with an application which run apache http server on port 80 and 443. both systems use the same virtual hostname like (app.domain.com). So when users hit http://app.domain.com in their browsers the get the site served by listeners from any of the systems.

now I want add a CNAME so that if users hit http://application.domain.com then site should work for them. I am sure it will work for http.

How about https://application.domain.com?

I wonder what CN should be used to generate CSR for the both systems running apache web server with same Virtualhostname(which here is app.domain.com and I don't want to change this to application.domain.com)

I guess both system`s apache should have same SSL certificate. How is this generally done for systems behind load balancer.

If I am not wrong, there will also be ssl key and Certificate required on Load Balancer Device itself.

Can we have a certificate which can be used for 2 hostnames at same time like app.domain.com and also application.domain.com or one can use *.domain.com wild card certs on all 3 systems or just copying one ssl certificate received from CA generated by one system's CSR can be copied to all 3 systems (2 server + 1 load balancer) with corresponding SSL server key?

Other than this I have a general question:
I have a ssl certificate for a hostname valid for 2 more years but I am putting a new hardware and new installation of web server, can I just transfer the old key and certificate to new server while I want new server take over the old one. Please let me know


Thanks
# 2  
Old 12-11-2008
Quote:
Originally Posted by upengan78
I have a ssl certificate for a hostname valid for 2 more years but I am putting a new hardware and new installation of web server, can I just transfer the old key and certificate to new server while I want new server take over the old one
I can only answer for this question, which is YES YOU CAN.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Linux

Apache wildcard ssl on subdomain serves same page for non ssl virtualhosts

Issue observed: I have configured ng.my-site.com using widlcard ssl cert. When I hit https://www.my-site.com it loads ng.my-site.com website! please advise if I missed any concept / configs... Thank you! httpd.conf <VirtualHost *:80> ServerName www.my-site.com ServerAdmin... (0 Replies)
Discussion started by: ashokvpp
0 Replies

2. Shell Programming and Scripting

awk script to find time difference between HTTP PUT and HTTP DELETE requests in access.log

Hi, I'm trying to write a script to determine the time gap between HTTP PUT and HTTP DELETE requests in the HTTP Servers access log. Normally client will do HTTP PUT to push content e.g. file_1.txt and 21 seconds later it will do HTTP DELETE, but sometimes the time varies causing some issues... (3 Replies)
Discussion started by: Juha
3 Replies

3. Web Development

HTTP Headers Reference: HTTP Status-Codes

Hypertext Transfer Protocol -- HTTP/1.1 for Reference - HTTP Headers 10 Status Code Definitions Each Status-Code is described below, including a description of which method(s) it can follow and any metainformation required in the response. (1 Reply)
Discussion started by: Neo
1 Replies

4. Shell Programming and Scripting

Perl Http Post over SSL

Hello, I'm using a tunnel broker for tunneling IPv6 traffic, as my ISP does not support it natively. As of recent i switched from Hurricane Electrics tunnel broker to Sixxs. Whenever my IP address changes, i have to manually log in and change it. This is a bit cumbersome so i was thinking of... (0 Replies)
Discussion started by: regexp
0 Replies

5. Shell Programming and Scripting

sending http url through http socket programming..

hi am senthil am developing a software to send and receive SMS using HTTP connection first of all am forming a URL and sending that URL to a remote server using my Client Program i send that url through Socket(using Send() Function) if i send more than one URL one by one using the same... (4 Replies)
Discussion started by: senkerth
4 Replies

6. Programming

sending http url through http socket programming..

hi am senthil am developing a software to send and receive SMS using HTTP connection first of all am forming a URL and sending that URL to a remote server using my Client Program i send that url through Socket(using Send() Function) if i send more than one URL one by one using the same... (0 Replies)
Discussion started by: senkerth
0 Replies

7. Web Development

Apache, cgi script run twice when ssl, once when not ssl

I have interesting problem. https:/host/some/x.cgi - this script has run twice when I call this url But http:/host/some/x.cgi work fine, only once. Output is text/plain. If I change output format to the Content-type text/html, then both urls works fine - executed only once. (2 Replies)
Discussion started by: kshji
2 Replies

8. UNIX for Dummies Questions & Answers

to enable POP3(ssl) and SMTP(ssl) in Squid

i have configured Squid proxy server in Fedora 8 with two network interfaces. HTTP, HTTPS, FTP are working fine but we are unable to download mails using mail clients from mail server with POP3(ssl) and SMTP(ssl). so please someone help us how to enable pop and smtp in Squid. (1 Reply)
Discussion started by: praneel2k
1 Replies

9. UNIX for Advanced & Expert Users

Ssl

What is the key diffirence between rsa and dsa. what is the maximum bit size to create the rsa as well as dsa key file. what is advantage of each over each-other? Thanks ______ Satya (2 Replies)
Discussion started by: satya009
2 Replies

10. UNIX for Advanced & Expert Users

implicit ssl vs explicit ssl

Can someone explain the difference between the two. Thanks (1 Reply)
Discussion started by: jerardfjay
1 Replies
Login or Register to Ask a Question