SSL termination of multiple websites using one VIP

Answered Question
Feb 16th, 2010
User Badges:

Is it possible to have 1 VIP listening on port 443 terminating multiple websites each having their own cert?


I.E. 10.10.10.10 is the VIP and I want it to do SSL termination for www1.mydomain.com, www2.mydomain.com and www3.mydomain.com.


I've tried to accomplish this by using authgroups and chaingroups and am having no luck.

Is what I'm trying to do even possible or should I be using a unique VIP for each site and certificate.


Thanks,

Bruno

Correct Answer by venkatkr about 7 years 3 months ago

HI Bruno,


This requires TLS 1.1 extension which is not supported on the ACE. You have to work around it. May be get a SAN cert with each names in it.


Hope this helps.


Venky

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
venkatkr Tue, 02/16/2010 - 16:50
User Badges:
  • Cisco Employee,

HI Bruno,


This requires TLS 1.1 extension which is not supported on the ACE. You have to work around it. May be get a SAN cert with each names in it.


Hope this helps.


Venky

Actions

This Discussion