On 11:08, Mon 09 Feb 09, Bryan Irvine wrote: > I'm trying to set up relayd to use as an https proxy to a cluster of > virtual domains. > > I've read https://calomel.org/relayd.html and gone through the > manpages and do not see how to send a different cert depending on the > domain requested. > > I'm ok with the no encryption between relayd and the cluster as the > colomel site describes. > I've gotten my sample site up and running but now need to add > virtualhosts to that. Will relayd be able to handle this? Or should I > be using gnutls for this?
You should use a different ip address for every ssl cert. Name-based virtual hosting is not supported by HTTPS because encrytion is setup before the host headers are sent back-n-forth. This is the case with relayd, apache, thttpd, $your_fav_httpd Yes, apache only logs a warning in the logs and tries some tricks to get around this but that's ugly. -- Michiel van Baak [email protected] http://michiel.vanbaak.eu GnuPG key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x71C946BD "Why is it drug addicts and computer aficionados are both called users?"
