You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Steffen Tronstad <st...@nextgentel.com> on 2009/03/04 14:13:00 UTC
[users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Dear all (I've tried google, and there seems to be so many different
solutions/problems on this subject that matching my case exactly is
nearly impossible).
My case:
I have a webserver with 1 IP-address. This webserver is currently
handling 6 virtual hosts configured like this:
ports.conf:
Listen 80
sites-enabled/default:
NameVirtualHost *
<VirtualHost *>
Bla bla bla
</VirtualHost>
sites-enabled/siteN:
<VirtualHost *>
ServerName www.mydomain.ltd
Bla bla bla
</VirtualHost>
This works perfekt!
- - - - - - -
Now I have to add SSL support for one of my domains, so I add Listen
443 to my ports.conf, changes all <VirtualHost *> to <VirtualHost *:80>
and create a new <VirtualHost *:443> for my SSL site. I also change/add
NameVirtualHost *:80 and *:443 in my 'default' file.
This doesnt work at all. What am I doing wrong?
Med vennlig hilsen / with kind regards
Steffen Tronstad
RE: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Steffen Tronstad <st...@nextgentel.com>.
And I forgot to include a complete dump of my vhost with SSL enabled
------------------------------------------------------------
<VirtualHost *:80>
ServerAdmin loxus@mydomain.no
DocumentRoot /home/myuser/public_html
ServerName mydomain.no
ErrorLog /var/log/apache2/mydomain.com-error.log
LogLevel warn
CustomLog /var/log/apache2/mydomain.com-access.log combined
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
AllowOverride None
Options ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
</VirtualHost>
<VirtualHost *:443>
ServerAdmin loxus@mydomain.no
DocumentRoot /home/myuser/public_html
ServerName mydomain.no
ErrorLog /var/log/apache2/mydomain.com-error.log
LogLevel warn
CustomLog /var/log/apache2/mydomain.com-access.log combined
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
AllowOverride None
Options ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
SSLEngine on
SSLCertificateFile /etc/apache2/mydomain.no.crt
</VirtualHost>
--------------------------------------------------
EOF.
-----Opprinnelig melding-----
Fra: Brian Mearns [mailto:mearns.b@gmail.com]
Sendt: 4. mars 2009 15:29
Til: users@httpd.apache.org
Emne: Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
On Wed, Mar 4, 2009 at 8:37 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> I've created the certificate and all this.
>
> I do not get any output from apache, other than failed!.
>
> /etc/init.d/apache2 start
> Starting web server (apache2)... failed!
>
>
> My error.log doesnt get updated with any errors.
>
>
>
> apache2ctl -S
> VirtualHost configuration:
> wildcard NameVirtualHosts and _default_ servers:
> *:443 is a NameVirtualHost
> default server mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> port 443 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> *:80 is a NameVirtualHost
> default server mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mydomain.com (/etc/apache2/sites-enabled/mydomain.com:1)
> port 80 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:1)
> port 80 namevhost mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:1)
> port 80 namevhost www.mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:17)
> port 80 namevhost ingame.mydomain.no (/etc/apache2/sites-enabled/ingame.mydomain.no:1)
> port 80 namevhost noje.mydomain.no (/etc/apache2/sites-enabled/noje.mydomain.no:1)
> Syntax OK
Oh, ok. That should just mean there's a problem in your config file.
It could be as simple as a typo.
Errors in the config file don't get reported to the error log (since
the error log is configured in the config file). To check for errors,
you want to run `apachectl -t`. The apachectl script should be in the
bin directory under where ever apache2 is installed.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Brian Mearns <me...@gmail.com>.
On Wed, Mar 4, 2009 at 9:59 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> Ah, this helped alot.
Excellent, glad you were able to solve the problem.
> Now I have to find a way to disable entering my passphrase "every time"
> (once a year) the server reboots.
There's info about this in the apache docs about this:
http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removepassphrase
It comes down to three options: use a private key without a
passphrase, store your passphrase on disk, or manually enter your
passphrase when needed. Obviously the first two are security risks,
but if you have strong root protection and make them only readable by
root, then it may be an option. One way to look at it is that if there
is a passphrase, it needs to be stored somewhere and communicated to
the server. That means either in a file, or in your head.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Steffen Tronstad <st...@nextgentel.com>.
Ah, this helped alot.
[Wed Mar 04 15:49:18 2009] [error] Init: Private key not found [Wed Mar
04 15:49:18 2009] [error] SSL Library Error: 218710120
error:0D094068:asn1 encoding routines:d2i_ASN1_SET:bad tag [Wed Mar 04
15:49:18 2009] [error] SSL Library Error: 218529960 error:0D0680A8:asn1
encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Mar 04 15:49:18 2009]
[error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding
routines:ASN1_ITEM_EX_D2I:nested asn1 error [Wed Mar 04 15:49:18 2009]
[error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding
routines:d2i_PrivateKey:ASN1 lib
The guide I've been following forgot to mention about the
'SSLCertificateKeyFile' setting. With this set everything worked 100%
ok. Thanks a lot for your help guys.
Now I have to find a way to disable entering my passphrase "every time"
(once a year) the server reboots.
Thank you again.
- Steffen
>From Andres Morey:
Hi Steffen,
Please turn your LogLevel to "info" to see if there are any messages in
the logs.
-Andres
-----Opprinnelig melding-----
Fra: Brian Mearns [mailto:mearns.b@gmail.com]
Sendt: 4. mars 2009 15:58
Til: users@httpd.apache.org
Emne: Re: [users@httpd] Help configuring Apache2 + SSL + namebased
vhosts
On Wed, Mar 4, 2009 at 9:42 AM, Steffen Tronstad <st...@nextgentel.com>
wrote:
> apache2ctl -t
> Syntax OK
<clip>
Hmm. Well, there's only two more things I can think of. First is that
apachectl is looking at a different config file than your init.d
script.
Second is that apache is unable to bind to port 443. If it was working
before you added the SSL stuff, then this could be the issue: this is
normally reported when you try to start the server, but the particular
init.d script you're using might obfiscate error messages, I've run
into that problem before. Along those lines, see if you can start the
server directly using 'apache2ctl start', that might get you some more
informative error messages.
Anyway, to see if it's a port-binding issue, make a back up of your
config file, then remove all the SSL stuff and just have a normal
vhost that happens to listen on 443. If you still can't start the
server, then binding is probably the issue. This could mean something
else is listening there, or that you just don't have permission to
bind to that port.
Sorry can't be more help. Please let us know how it goes.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Brian Mearns <me...@gmail.com>.
On Wed, Mar 4, 2009 at 9:42 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> apache2ctl -t
> Syntax OK
<clip>
Hmm. Well, there's only two more things I can think of. First is that
apachectl is looking at a different config file than your init.d
script.
Second is that apache is unable to bind to port 443. If it was working
before you added the SSL stuff, then this could be the issue: this is
normally reported when you try to start the server, but the particular
init.d script you're using might obfiscate error messages, I've run
into that problem before. Along those lines, see if you can start the
server directly using 'apache2ctl start', that might get you some more
informative error messages.
Anyway, to see if it's a port-binding issue, make a back up of your
config file, then remove all the SSL stuff and just have a normal
vhost that happens to listen on 443. If you still can't start the
server, then binding is probably the issue. This could mean something
else is listening there, or that you just don't have permission to
bind to that port.
Sorry can't be more help. Please let us know how it goes.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Steffen Tronstad <st...@nextgentel.com>.
apache2ctl -t
Syntax OK
Here is a complete dump of my /etc/apache2/sites-enabled/000-default file:
---------------------------------------------------------------------------------
NameVirtualHost *:80
NameVirtualHost *:443
<VirtualHost *:80>
ServerAdmin webmaster@localhost
DocumentRoot /home/myuser/public_html/
<Directory />
Options FollowSymLinks ExecCGI
AllowOverride All
</Directory>
Userdir public_html
<Directory /home/*/public_html>
Options Indexes FollowSymLinks MultiViews ExecCGI
AllowOverride All
Order allow,deny
allow from all
</Directory>
<Directory /var/www/>
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
# This directive allows us to have apache2's default start page
# in /apache2-default/, but still have / go to the right place
#RedirectMatch ^/$ /apache2-default/
</Directory>
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
AllowOverride None
Options ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
ErrorLog /var/log/apache2/error.log
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
CustomLog /var/log/apache2/mydomain.com-access.log combined
ServerSignature On
Alias /doc/ "/usr/share/doc/"
<Directory "/usr/share/doc/">
Options Indexes MultiViews FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all
Allow from 127.0.0.0/255.0.0.0 ::1/128
</Directory>
</VirtualHost>
---------------------------------------------------------------------------------
EOF.
-----Opprinnelig melding-----
Fra: Brian Mearns [mailto:mearns.b@gmail.com]
Sendt: 4. mars 2009 15:29
Til: users@httpd.apache.org
Emne: Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
On Wed, Mar 4, 2009 at 8:37 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> I've created the certificate and all this.
>
> I do not get any output from apache, other than failed!.
>
> /etc/init.d/apache2 start
> Starting web server (apache2)... failed!
>
>
> My error.log doesnt get updated with any errors.
>
>
>
> apache2ctl -S
> VirtualHost configuration:
> wildcard NameVirtualHosts and _default_ servers:
> *:443 is a NameVirtualHost
> default server mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> port 443 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> *:80 is a NameVirtualHost
> default server mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mydomain.com (/etc/apache2/sites-enabled/mydomain.com:1)
> port 80 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:1)
> port 80 namevhost mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:1)
> port 80 namevhost www.mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:17)
> port 80 namevhost ingame.mydomain.no (/etc/apache2/sites-enabled/ingame.mydomain.no:1)
> port 80 namevhost noje.mydomain.no (/etc/apache2/sites-enabled/noje.mydomain.no:1)
> Syntax OK
Oh, ok. That should just mean there's a problem in your config file.
It could be as simple as a typo.
Errors in the config file don't get reported to the error log (since
the error log is configured in the config file). To check for errors,
you want to run `apachectl -t`. The apachectl script should be in the
bin directory under where ever apache2 is installed.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Brian Mearns <me...@gmail.com>.
On Wed, Mar 4, 2009 at 8:37 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> I've created the certificate and all this.
>
> I do not get any output from apache, other than failed!.
>
> /etc/init.d/apache2 start
> Starting web server (apache2)... failed!
>
>
> My error.log doesnt get updated with any errors.
>
>
>
> apache2ctl -S
> VirtualHost configuration:
> wildcard NameVirtualHosts and _default_ servers:
> *:443 is a NameVirtualHost
> default server mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> port 443 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
> *:80 is a NameVirtualHost
> default server mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
> port 80 namevhost mydomain.com (/etc/apache2/sites-enabled/mydomain.com:1)
> port 80 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:1)
> port 80 namevhost mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:1)
> port 80 namevhost www.mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:17)
> port 80 namevhost ingame.mydomain.no (/etc/apache2/sites-enabled/ingame.mydomain.no:1)
> port 80 namevhost noje.mydomain.no (/etc/apache2/sites-enabled/noje.mydomain.no:1)
> Syntax OK
Oh, ok. That should just mean there's a problem in your config file.
It could be as simple as a typo.
Errors in the config file don't get reported to the error log (since
the error log is configured in the config file). To check for errors,
you want to run `apachectl -t`. The apachectl script should be in the
bin directory under where ever apache2 is installed.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Steffen Tronstad <st...@nextgentel.com>.
I've created the certificate and all this.
I do not get any output from apache, other than failed!.
/etc/init.d/apache2 start
Starting web server (apache2)... failed!
My error.log doesnt get updated with any errors.
apache2ctl -S
VirtualHost configuration:
wildcard NameVirtualHosts and _default_ servers:
*:443 is a NameVirtualHost
default server mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
port 443 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:18)
*:80 is a NameVirtualHost
default server mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
port 80 namevhost mysql.mydomain.no (/etc/apache2/sites-enabled/000-default:4)
port 80 namevhost mydomain.com (/etc/apache2/sites-enabled/mydomain.com:1)
port 80 namevhost mydomain.no (/etc/apache2/sites-enabled/mydomain.no:1)
port 80 namevhost mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:1)
port 80 namevhost www.mydomain.ny (/etc/apache2/sites-enabled/mydomain.ny:17)
port 80 namevhost ingame.mydomain.no (/etc/apache2/sites-enabled/ingame.mydomain.no:1)
port 80 namevhost noje.mydomain.no (/etc/apache2/sites-enabled/noje.mydomain.no:1)
Syntax OK
-----Opprinnelig melding-----
Fra: Brian Mearns [mailto:mearns.b@gmail.com]
Sendt: 4. mars 2009 14:32
Til: users@httpd.apache.org
Emne: Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
On Wed, Mar 4, 2009 at 8:18 AM, Eric Covener <co...@gmail.com> wrote:
> On Wed, Mar 4, 2009 at 8:13 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
>> Now I have to add SSL support for one of my domains, so I add Listen 443 to
>> my ports.conf, changes all <VirtualHost *> to <VirtualHost *:80> and create
>> a new <VirtualHost *:443> for my SSL site. I also change/add NameVirtualHost
>> *:80 and *:443 in my 'default' file.
>>
>> This doesnt work at all. What am I doing wrong?
>>
>
> That looks exactly right.
>
> Can you elaborate on "doesn't work" and include the output of
> apachectl/apache2ctl/httpd -S and maybe your SSL config?
>
> --
> Eric Covener
> covener@gmail.com
>
Just listening on 443 won't cut it, it does actually take a little
work to get SSL set up. Specifically, you need to create some
certificates and configure apache to use them, not to mention turning
on SSL. If you already did this, then like Eric said, you'll need to
be more specific about the behavior you're seeing.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Brian Mearns <me...@gmail.com>.
On Wed, Mar 4, 2009 at 8:18 AM, Eric Covener <co...@gmail.com> wrote:
> On Wed, Mar 4, 2009 at 8:13 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
>> Now I have to add SSL support for one of my domains, so I add Listen 443 to
>> my ports.conf, changes all <VirtualHost *> to <VirtualHost *:80> and create
>> a new <VirtualHost *:443> for my SSL site. I also change/add NameVirtualHost
>> *:80 and *:443 in my ’default’ file.
>>
>> This doesnt work at all. What am I doing wrong?
>>
>
> That looks exactly right.
>
> Can you elaborate on "doesn't work" and include the output of
> apachectl/apache2ctl/httpd -S and maybe your SSL config?
>
> --
> Eric Covener
> covener@gmail.com
>
Just listening on 443 won't cut it, it does actually take a little
work to get SSL set up. Specifically, you need to create some
certificates and configure apache to use them, not to mention turning
on SSL. If you already did this, then like Eric said, you'll need to
be more specific about the behavior you're seeing.
-Brian
--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Help configuring Apache2 + SSL + namebased vhosts
Posted by Eric Covener <co...@gmail.com>.
On Wed, Mar 4, 2009 at 8:13 AM, Steffen Tronstad <st...@nextgentel.com> wrote:
> Now I have to add SSL support for one of my domains, so I add Listen 443 to
> my ports.conf, changes all <VirtualHost *> to <VirtualHost *:80> and create
> a new <VirtualHost *:443> for my SSL site. I also change/add NameVirtualHost
> *:80 and *:443 in my ’default’ file.
>
> This doesnt work at all. What am I doing wrong?
>
That looks exactly right.
Can you elaborate on "doesn't work" and include the output of
apachectl/apache2ctl/httpd -S and maybe your SSL config?
--
Eric Covener
covener@gmail.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org