SSL For one site Become Default SSL for All site
SSL For one site Become Default SSL for All site
Hi,
I have Installed SSL for one of my Website, its working fine, it is the only SSL on my vesta, i have other 120 websites,
but whenever i type https://otherdomains OR, https://vestacpip its showing and redirecting to that SSL site. look like the SSL become default for all sites. if i hit https://otherdomains, it should not work write ? what do i miss ?
Please help..
I have Installed SSL for one of my Website, its working fine, it is the only SSL on my vesta, i have other 120 websites,
but whenever i type https://otherdomains OR, https://vestacpip its showing and redirecting to that SSL site. look like the SSL become default for all sites. if i hit https://otherdomains, it should not work write ? what do i miss ?
Please help..
-
mehargags
- Support team
- Posts: 1096
- Joined: Sat Sep 06, 2014 9:58 pm
- Contact:
- Os: Debian 8x
- Web: apache + nginx
Re: SSL For one site Become Default SSL for All site
Get a Separate IPv4 for your SSL site and set the site to work at https on that IP. This is the only (easy) way to do it else you will have to mug up your head in insane nginx/apache configs.
an IPv4 cost around $1/year so I presume If you are hosting 120 sites, you can buy a single IP dedicated to one site.
an IPv4 cost around $1/year so I presume If you are hosting 120 sites, you can buy a single IP dedicated to one site.
Re: SSL For one site Become Default SSL for All site
Thank you very much, but in future some of my client could want their sites to install SSL what will i do then ? buy seperate ip in this way ? please clear me..or i can just assign those sites to one single ip ? please help...
-
mehargags
- Support team
- Posts: 1096
- Joined: Sat Sep 06, 2014 9:58 pm
- Contact:
- Os: Debian 8x
- Web: apache + nginx
Re: SSL For one site Become Default SSL for All site
Yes... you get it right.
SSL Costs extra so you have to charge your client for the SSL certificate and for the EXTRA IP that needs to be allocated for his SSL site.
SSL Costs extra so you have to charge your client for the SSL certificate and for the EXTRA IP that needs to be allocated for his SSL site.
-
tjebbeke
- Collaborator
- Posts: 783
- Joined: Mon May 11, 2015 8:43 am
- Contact:
- Os: CentOS 6x
- Web: apache + nginx
Re: SSL For one site Become Default SSL for All site
You can use let's encrypt to install free SSL certificates.
You can read this to change the nginx config and block the 'wrong' requests: http://nginx.org/en/docs/http/request_p ... rver_names
You can read this to change the nginx config and block the 'wrong' requests: http://nginx.org/en/docs/http/request_p ... rver_names
Re: SSL For one site Become Default SSL for All site
You can have multiple SSL certificates installed one 1 IP address.
If you do not want visitors to be able to see another clients' website when they go to HTTPS then you need to buy 1 more IP address and make sure all SSL clients are on that IP address and your other clients who don't have SSL are on a different IP address.
If you do not want visitors to be able to see another clients' website when they go to HTTPS then you need to buy 1 more IP address and make sure all SSL clients are on that IP address and your other clients who don't have SSL are on a different IP address.
Re: SSL For one site Become Default SSL for All site
Do not open the default site's SSL
In other new sites can be used SSL
In other new sites can be used SSL
Re: SSL For one site Become Default SSL for All site
OR we can filter a little connections via nginx - /etc/nginx/conf.d/192.168.0.1.conf (your IP here)
Code: Select all
# for incomming connection http
server {
listen 192.168.0.1:80 default;
server_name _;
access_log /dev/null;
error_log /dev/null;
return 444;
}
# for incomming connection https
server {
listen 192.168.0.1:443 ssl spdy;
server_name _;
ssl on;
ssl_certificate /home/admin/conf/web/ssl.domain.ru.pem;
ssl_certificate_key /home/admin/conf/web/ssl.domain.ru.key;
access_log /dev/null;
error_log /dev/null;
return 444;
}