I’m having issues with what seemed like a fairly simple thing to do, but has turned into a major headache.
Requirements
I have a need to add a second SSL certificate to a dedicated Ubuntu box running Apache2.
What’s happened so far?
Knowing that I need a second public-facing IP address, I asked the hosting company to set up a second public IP as a 1-to-1 NAT with a new LAN IP. I set up an IP-alias on the ubuntu NIC card with the new LAN IP they gave me, and changed Apache’s config to listen on the new IP and changed everything to IP-based virtual hosts.
The result
The existing websites continue to operate as normal, however the new one does not respond to the outside world at all (ping, https, http, ssh, etc). I have logged into the Ubuntu box and can ping both LAN addresses, and have used w3m to confirm that both virtual hosts respond correctly on the LAN. The new public IP just won’t respond. The hosting company are not very experienced with Linux, and so can’t offer much advice. They think that there might be a problem with having two IPs on the one NIC, that perhaps it’s responding on the primary IP instead of the secondary?
Here’s a short explanation of how the network is set up (IPs changed from real-life for privacy):