Vesta Control Panel - Forum

Hello, this feature (multiple SSL on single IP address) is called as SNI and in VestaCP should work out of the box without additional changes.

Yes it works for web domains ...
but does it works also for exim & dovecot ?

Maybe this will help you.

Configuring Exim
By default, Vesta does not install Exim 4 with SMTP TLS support. That means that emails are sent in clear text to the server, and that's not optimal. We'll need to reconfigure Exim with SMTP TLS support. How do we do that?
nano /etc/exim4/exim4.conf.template
You'll notice that the following lines are commented out, just so.
#tls_advertise_hosts = *
#tls_certificate = /usr/local/vesta/ssl/certificate.crt
#tls_privatekey = /usr/local/vesta/ssl/certificate.key
Simply uncomment them! To do that, remove the # preceding the lines that we need to get Exim to work with SSL, as shown below.
tls_advertise_hosts = *
tls_certificate = /usr/local/vesta/ssl/certificate.crt
tls_privatekey = /usr/local/vesta/ssl/certificate.key
Now save the file and restart Exim.

Thank you but i have multiple ssl certificates
For instance, one certificate for mydomain1.com and a second for mydomain2 com
How to manage this context under exim & dovecot ?

JP

Like I said above.
Tell Exim to use what SSL for what purpose.

If you use SSL Certificate 1 for your domain you can put it via panel or put in inside /home/$username/conf/web/snginx.conf

ssl_certificate /home/$username/conf/web/sslcertificate1.pem;
ssl_certificate_key /home/$username/conf/web/sslcertificate1.key;

If you are going to use SSL for exim, use the same way:

tls_advertise_hosts = *
tls_certificate = /yourfavorite/location/for/ssl/sslcertificate2.crt
tls_privatekey = /yourfavorite/location/for/ssl/sslcertificate2.key

Then restart EXIM.

Hope this is clear enough for you.