2nd IP for ssl on single/many sites.

Discussion in 'Installation/Configuration' started by veggieryan, Jul 12, 2007.

  1. veggieryan

    veggieryan New Member

    1. I have a VPS ubuntu box with ispconfig and two IP's

    2. I add a domain and assign it the second ip and enable ssl

    3. I generate the ssl and save it.

    4. i goto the domain http://domain.com and get the " This IP address is shared. For access to the web site which you look for, enter its address instead of its IP.

    For questions or problems please contact the server administrator." error.

    5. https://domain.com is not found.


    What am I doing wrong? the domain is remixer.org if you can tell anything remotely :confused:
     
  2. falko

    falko Super Moderator ISPConfig Developer

    What's in Vhosts_ispconfig.conf? What's the output of
    Code:
    netstat -tap
    ? Is port 443 allowd through your firewall?
     
  3. veggieryan

    veggieryan New Member

    netstap -tap
    Code:
    Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name   
    tcp        0      0 *:996                   *:*                     LISTEN     3357/rpc.statd      
    tcp        0      0 *:mysql                 *:*                     LISTEN     3092/mysqld         
    tcp        0      0 *:sunrpc                *:*                     LISTEN     2283/portmap        
    tcp        0      0 *:81                    *:*                     LISTEN     12689/ispconfig_htt 
    tcp        0      0 *:ftp                   *:*                     LISTEN     23228/proftpd: (acc 
    tcp        0      0 server1.fractalg:domain *:*                     LISTEN     15253/named         
    tcp        0      0 localhost.locald:domain *:*                     LISTEN     15253/named         
    tcp        0      0 localhost.localdom:8118 *:*                     LISTEN     29871/privoxy       
    tcp        0      0 *:50008                 *:*                     LISTEN     2582/ccsd           
    tcp        0      0 *:smtp                  *:*                     LISTEN     23465/master        
    tcp        0      0 localhost.localdoma:953 *:*                     LISTEN     15253/named         
    tcp        0      0 localhost.localdom:9050 *:*                     LISTEN     3292/tor            
    tcp6       0      0 *:imaps                 *:*                     LISTEN     2933/couriertcpd    
    tcp6       0      0 *:pop3s                 *:*                     LISTEN     2968/couriertcpd    
    tcp6       0      0 *:pop3                  *:*                     LISTEN     2948/couriertcpd    
    tcp6       0      0 *:imap2                 *:*                     LISTEN     2913/couriertcpd    
    tcp6       0      0 *:www                   *:*                     LISTEN     13704/apache2       
    tcp6       0      0 *:ssh                   *:*                     LISTEN     3283/sshd           
    tcp6       0      0 ip6-localhost:50006     *:*                     LISTEN     2582/ccsd           
    tcp6       0      0 *:smtp                  *:*                     LISTEN     23465/master        
    tcp6       0      0 ip6-localhost:953       *:*                     LISTEN     15253/named         
    tcp6       0      0 *:50009                 *:*                     LISTEN     2582/ccsd           
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62173 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgr:imap2 c-76-21-101-67.hs:61820 ESTABLISHED16389/imapd         
    tcp6       0      0 server1.fractalgrou:www server1.fractalgro:4591 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62183 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62182 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62181 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62180 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62191 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62190 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62189 TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62188 TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3124      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3126      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3120      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3122      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3116      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3118      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3112      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 ip6-localhost:3114      ip6-localhost:www       TIME_WAIT  -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62186 TIME_WAIT  -                   
    tcp6       0      1 server1.fractalgrou:ssh fire.tkvs.ylc.edu:51974 LAST_ACK   -                   
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62185 TIME_WAIT  -                   
    tcp6       0   1808 server1.fractalgrou:ssh c-76-21-101-67.hs:62217 ESTABLISHED17831/0             
    tcp6       0      0 server1.fractalgrou:www c-76-21-101-67.hs:62184 TIME_WAIT  -   
    vhosts_ispconfig.conf
    Code:
    #
    #
    #
    ######################################
    # Vhost: www.remixer.org:80
    ######################################
    #
    #
    <VirtualHost 64.22.71.54:80>
    <Directory /var/www/remixer.org/web/>  
    Options +Includes +FollowSymlinks -Indexes  
    AllowOverride All  
    Order allow,deny  
    Allow from all  
    <Files ~ "^.ht">  
    Deny from all  
    </Files>  
    </Directory>
    ServerName www.remixer.org:80
    ServerAdmin [email protected]
    DocumentRoot /var/www/web11/web
    ServerAlias remixer.org
    DirectoryIndex index.html index.htm index.php index.php5 index.php4 index.php3 index.shtml index.cgi index.pl index.jsp Default.htm default.htm
    ErrorLog /var/www/web11/log/error.log
    AddType application/x-httpd-php .php .php3 .php4 .php5
    <Files *.php>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php3>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php4>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php5>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    php_admin_flag safe_mode Off
    Alias /error/ "/var/www/web11/web/error/"
    ErrorDocument 400 /error/invalidSyntax.html
    ErrorDocument 401 /error/authorizationRequired.html
    ErrorDocument 403 /error/forbidden.html
    ErrorDocument 404 /error/fileNotFound.html
    ErrorDocument 405 /error/methodNotAllowed.html
    ErrorDocument 500 /error/internalServerError.html
    ErrorDocument 503 /error/overloaded.html
    AliasMatch ^/~([^/]+)(/(.*))? /var/www/web11/user/$1/web/$3
    AliasMatch ^/users/([^/]+)(/(.*))? /var/www/web11/user/$1/web/$3
    </VirtualHost>
    #
    <IfModule mod_ssl.c>
    <VirtualHost 64.22.71.54:443>
    <Directory /var/www/remixer.org/web/>  
    Options +Includes +FollowSymlinks -Indexes  
    AllowOverride All  
    Order allow,deny  
    Allow from all  
    <Files ~ "^.ht">  
    Deny from all  
    </Files>  
    </Directory>
    ServerName www.remixer.org:443
    ServerAdmin [email protected]
    DocumentRoot /var/www/web11/web
    ServerAlias remixer.org
    DirectoryIndex index.html index.htm index.php index.php5 index.php4 index.php3 index.shtml index.cgi index.pl index.jsp Default.htm default.htm
    ErrorLog /var/www/web11/log/error.log
    AddType application/x-httpd-php .php .php3 .php4 .php5
    <Files *.php>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php3>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php4>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    <Files *.php5>
        SetOutputFilter PHP
        SetInputFilter PHP
    </Files>
    php_admin_flag safe_mode Off
    SSLEngine on
    SSLCertificateFile /var/www/web11/ssl/www.remixer.org.crt
    SSLCertificateKeyFile /var/www/web11/ssl/www.remixer.org.key
    Alias /error/ "/var/www/web11/web/error/"
    ErrorDocument 400 /error/invalidSyntax.html
    ErrorDocument 401 /error/authorizationRequired.html
    ErrorDocument 403 /error/forbidden.html
    ErrorDocument 404 /error/fileNotFound.html
    ErrorDocument 405 /error/methodNotAllowed.html
    ErrorDocument 500 /error/internalServerError.html
    ErrorDocument 503 /error/overloaded.html
    AliasMatch ^/~([^/]+)(/(.*))? /var/www/web11/user/$1/web/$3
    AliasMatch ^/users/([^/]+)(/(.*))? /var/www/web11/user/$1/web/$3
    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
    </VirtualHost>
    </IfModule>
    #
    #
    
    i setup my ubuntu per the perfect server and do not know how to check for a firewall.
    also.. i did not get an instant notification via email as I usually do on this forum...
     
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    Please post the output of:

    ifconfig
     
  5. veggieryan

    veggieryan New Member

    thanks again

    ifconfig
    Code:
    root@server1:~ # ifconfig
    eth0      Link encap:Ethernet  HWaddr FE:FD:40:16:47:35  
              inet addr:64.22.71.53  Bcast:64.22.71.255  Mask:255.255.255.0
              inet6 addr: fe80::fcfd:40ff:fe16:4735/64 Scope:Link
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:120189 errors:0 dropped:0 overruns:0 frame:0
              TX packets:161707 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:1000 
              RX bytes:12464257 (11.8 MiB)  TX bytes:171325000 (163.3 MiB)
              Interrupt:5 
    
    lo        Link encap:Local Loopback  
              inet addr:127.0.0.1  Mask:255.0.0.0
              inet6 addr: ::1/128 Scope:Host
              UP LOOPBACK RUNNING  MTU:16436  Metric:1
              RX packets:123268 errors:0 dropped:0 overruns:0 frame:0
              TX packets:123268 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:0 
              RX bytes:8622996 (8.2 MiB)  TX bytes:8622996 (8.2 MiB)
    
     
  6. falko

    falko Super Moderator ISPConfig Developer

  7. veggieryan

    veggieryan New Member

    hmmm

    hmmm,
    64.22.71.54 is already in management>>server>> settings>>ip list:

    is there another place its supposed listed?
     
  8. till

    till Super Moderator Staff Member ISPConfig Developer

    Please have a look at Falkos post above. Adding it to the IP list is not enough. Either you configure it manually in your network configuration too or you enable the IP configuration as described in the link that Falko posted.
     
  9. veggieryan

    veggieryan New Member

    ok,
    now I edited /home/admispconfig/ispconfig/lib/config.inc.php
    and
    set $go_info["server"]["network_config"] to 1.
    restart ispconfig_server and reboot machine.

    and ifconfig gives

    Code:
    eth0      Link encap:Ethernet  HWaddr FE:FD:40:16:47:35  
              inet addr:64.22.71.53  Bcast:64.22.71.255  Mask:255.255.255.0
              inet6 addr: fe80::fcfd:40ff:fe16:4735/64 Scope:Link
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:341841 errors:0 dropped:0 overruns:0 frame:0
              TX packets:383043 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:1000 
              RX bytes:140502581 (133.9 MiB)  TX bytes:310461170 (296.0 MiB)
              Interrupt:5 
    
    eth0:0    Link encap:Ethernet  HWaddr FE:FD:40:16:47:35  
              inet addr:64.22.71.54  Bcast:64.22.71.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              Interrupt:5 
    
    lo        Link encap:Local Loopback  
              inet addr:127.0.0.1  Mask:255.0.0.0
              inet6 addr: ::1/128 Scope:Host
              UP LOOPBACK RUNNING  MTU:16436  Metric:1
              RX packets:373484 errors:0 dropped:0 overruns:0 frame:0
              TX packets:373484 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:0 
              RX bytes:34920560 (33.3 MiB)  TX bytes:34920560 (33.3 MiB)
    
    still get same shared ip error page at http://remixer.org and page not found at https://remixer.org
     
  10. till

    till Super Moderator Staff Member ISPConfig Developer

    You must remove the IP addresses from the server settings and then readd them again.
     
  11. veggieryan

    veggieryan New Member

    well it only lets me delete an ip from "ip list:" not "ip address:"

    so i left 64.22.71.53 in "ip address:"

    and then deleted 64.22.71.54 from "ip list:"

    restarted ispconfig, rebooted box.

    then i added 64.22.71.54 to "ip list:"

    restarted ispconfig, rebooted box.

    same problem...

    :confused:
     
  12. falko

    falko Super Moderator ISPConfig Developer

    Ok, now go to the Basis tab of remixer.org in ISPConfig and change the IP address from 64.22.71.54 to 64.22.71.53.
     
  13. veggieryan

    veggieryan New Member

    Okay,
    switched back to 64.22.71.53 in basis tab.
    said "An SSL certificate does already exist for this IP."
    so it disabled SSL and everything works like usual... but no ssl.

    So then back to 64.22.71.54 in basis tab and check the ssl box..

    same errors as before... shared ip error page.. https://remixer.org is not found.

    what am I missing.. how can i make my drupal site at www.remixer.org work with ssl? https://remixer.org
     
  14. falko

    falko Super Moderator ISPConfig Developer

    Can you change something inthe ISPConfig settings for that web site (e.g. switch off PHP and switch it back on a minute later)? Does the IP change then in Vhosts_ispconfig.conf?
     

Share This Page