SSL termination of multiple websites using one VIP

Answered Question
Feb 16th, 2010

Is it possible to have 1 VIP listening on port 443 terminating multiple websites each having their own cert?

I.E. 10.10.10.10 is the VIP and I want it to do SSL termination for www1.mydomain.com, www2.mydomain.com and www3.mydomain.com.

I've tried to accomplish this by using authgroups and chaingroups and am having no luck.

Is what I'm trying to do even possible or should I be using a unique VIP for each site and certificate.

Thanks,

Bruno

I have this problem too.
0 votes
Correct Answer by venkatkr about 6 years 11 months ago

HI Bruno,

This requires TLS 1.1 extension which is not supported on the ACE. You have to work around it. May be get a SAN cert with each names in it.

Hope this helps.


Venky

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
venkatkr Tue, 02/16/2010 - 16:50

HI Bruno,

This requires TLS 1.1 extension which is not supported on the ACE. You have to work around it. May be get a SAN cert with each names in it.

Hope this helps.


Venky

Actions

This Discussion