Multiple SSL using Single IP Apache

Hi,

Our company has been trying to use multiple SSL under one I.P… We tried a number of different things including mod_proxy combined with mod_SSL. We eventually found a way that works; albeit with some limitations that work with our market.

The original article is found on a blog at techrepublic.com: Configure Apache to support multiple SSL sites on a single IP address | TechRepublic

It uses a Server Name Indication available in apache version 2.2.12+. It involves compiling apache with TSL support and then installing OpenSSL that will recognize the TSL and enable SNI support.

It is actually easier to install a Debian 6 server as the apache and TSL module are available with the appropriate dependencies already worked out.

This is good news because doing this with a proxy was master wizardry and witchcraft and ugly to support.

Hope this points you in the right direction.

Regards,
Steve

Urgh is all I can say to SSL and Single IP’s. SNI definitely is a nice idea and hopefully more Linux distros will start to take it up.

Its a pain that it doesn’t do it, but a blessing at the same time. Certainly its something that does need a solution wiht the availabilty of IPv4 adresses running short though

Yes an for those of you that don’t know, on Linux distros that don’t have out of the box support you can compile OpenSSL with the TSL option which will do it. Or, search for a pre-compiled linux OpenSSL TSL module for your distro.

Regards,
Steve