Re: [users@httpd] multiple instances of apache and ssl

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

We start apache with http-server1.conf then we start anther apache with http-server2.conf. 

  We only installed apache in one location /opt/apache2
and start all apache instances out of that directory by copying the /opt/apache2/bin/apachectl to /opt/apache2/bin/server1_apachectl. At this point we modify /opt/bin/apache2/server1_apachectl and change the line for config to config=/opt/apache2/conf/http-server1.conf.
We do the same for all other instances by creating it's own apachectl that calls it's own custom httpd.conf files. 

Kishore Jalleda wrote:
when you said multiple instances of apache , do you mean two different apache installs in like /usr/local/apache, and /usr/local/apache2 or do you mean just different virtual hosts within the same instance??? Kishore Jalleda
On 2/24/06, *John Beck* <john@xxxxxxxxxxxx <mailto:john@xxxxxxxxxxxx>> wrote: 

    Hello,
    We run multiple instances of apache 2.0.55 on the same server. Each
    instance has it's own IP address.

    I have been trying without success to run SSL on more than one instance
    at the same time. Usually if I specify the IP in a virtualhost section
    of the ssl.conf then the first instance of apache starts listening on
    all the IPs specified in ssl.conf.

    Is there a way to use make apache use a different ssl.conf than the
    default in /opt/apache2/conf/ssl.conf. I have also tried to run the ssl
    in each individial httpd-server1.conf and httpd-server2.conf files but
    it seems to not recognize the SSLENGINE or any other SSL configurations.

    Thanks in advance, and please let me know if you need to see any other
    config files (I am still searching the Mail Archives for more
    information on these issues, so please forgive me if it's been asked
    before).

    -John B.

    <ssl.conf>

    Listen 172.30.5.201:443 <http://172.30.5.201:443>
    Listen 172.30.5.202:443 <http://172.30.5.202:443>

    <VirtualHost 172.30.5.202:443 <http://172.30.5.202:443>>
       ServerName edexter.ourdomain.com <http://edexter.ourdomain.com>
       DocumentRoot /opt/apache2/ssldocs
       SSLEngine On
       SSLProtocol all
       SSLCipherSuite
    ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
       SSLCertificateFile /opt/apache2/conf/ssl.crt/e_dexter.crt
       SSLCertificateKeyFile /opt/apache2/conf/ssl.key/e_dexter.key
       SSLCACertificateFile /opt/apache2/conf/ssl.crt/ca-bundle.crt
       SetEnvIf User-Agent ".*MSIE.*" \
                nokeepalive ssl-unclean-shutdown \
                downgrade-1.0 force-response-1.0
       RewriteEngine on
       RewriteLoGLevel 3
       RewriteLog logs/rewrite_log_lotfi_4
       RewriteRule https://edexter.ourdomain.com
    http://edexter.nasaprs.com/external
    <http://edexter.nasaprs.com/external>

       #RewriteRule https://e_dexter.ourdomain.com/external/(.*)$
    http://edexter.nasaprs.com/external/$1
    <http://edexter.nasaprs.com/external/$1>

    </VirtualHost>

    <VirtualHost 172.30.5.201:443 <http://172.30.5.201:443>>
       ServerName i-dexter.ourdomain.com <http://i-dexter.ourdomain.com>
       DocumentRoot /opt/apache2/ssldocs
       SSLEngine On
       SSLProtocol all
       SSLCipherSuite
    ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
       SSLCertificateFile /opt/apache2/conf/ssl.crt/i_dexter.crt
       SSLCertificateKeyFile /opt/apache2/conf/ssl.key/i_dexter.key
       SSLCACertificateFile /opt/apache2/conf/ssl.crt/ca-bundle.crt
       SetEnvIf Cookie "language=en" prefer-language=en
       CookieTracking on
       SetEnvIf User-Agent ".*MSIE.*" \
                nokeepalive ssl-unclean-shutdown \
                 downgrade-1.0 force-response-1.0
       RewriteEngine on
       RewriteLoGLevel 3
       RewriteLog logs/rewrite_log_lotfi_internal
       Redirect permanent / https://edexter.ourdomain.com/internal/
    </VirtualHost>

    ---------------------------------------------------------------------
    The official User-To-User support forum of the Apache HTTP Server
    Project.
    See <URL:http://httpd.apache.org/userslist.html> for more info.
    To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
    <mailto:users-unsubscribe@xxxxxxxxxxxxxxxx>
      "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
    <mailto:users-digest-unsubscribe@xxxxxxxxxxxxxxxx>
    For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
    <mailto:users-help@xxxxxxxxxxxxxxxx>




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux