> If I have other sites on one of the boxes eg. www.myOtherDomain.com,
> using host headers, but my clustered site www.mydomain.com is the only
> one requiring SSL, that should be ok right? Just looking to host
> corp, website and other aux. domains somewhere.
There shouldn't be a problem, as long as nobody ever tries to do
https://www.myotherdomain.com/ - if they do, and port 443 is open with
an SSL cert for www.mydomain.com as opposed to www.myotherdomain.com,
confusing errors will result.
It's probably safest to use a separate external IP, and separarte
interal port for the non-clustered non-SSL sites, that way it's easy to
keep things sane... eg:
www.mydomain.com -> IP address 20.0.0.1
www.myotherdomain.com -> IP address 20.0.0.2
server1.internal -> 10.0.0.1
server2.internal -> 10.0.0.2
server3.internal -> 10.0.0.3
On your load-balancer, you perform the following mappings:
20.0.0.1:80 -> 10.0.0.1:80, 10.0.0.2:80, 10.0.0.3:80
20.0.0.1:443 -> 10.0.0.1:443, 10.0.0.2:443, 10.0.0.3:80
20.0.0.2:80 -> 10.0.0.1:9000
Run your myotherdomain.com sites, and other name virtual sites on port
9000 on server1.
Associate the SSL certificate for www.mydomain.com with port 443 on
server{1..3}, and run the SSL site on this port.
Run the non-SSL site for www.mydomain.com on port 80 of server{1..3}.
Colm
--
Colm Buckley / colm at google.com / +353 87 2469146
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
