在端口 443 和 2443 上为 secure.DOMAIN.com 使用 SSL,可以吗?

在端口 443 和 2443 上为 secure.DOMAIN.com 使用 SSL,可以吗?

所以我有一个使用 godaddy ssl 保护的子域名。我想要做的是保护标准 443 端口以及端口 2443,这样当https://secure.domain.com它应该是安全的,然后当https://secure.domain.com:2443它也是安全的。443 是标准站点,2443 用于控制面板。

我已将 ssl 条目添加到 2443 下监听的 vhosts,但这并没有得到我想要的结果。我是这方面的新手,谷歌也没有提供太多帮助。

这是在灯系统上。centos 6.4 apache2 可以做到这一点吗?

以下是虚拟主机的配置:

            <VirtualHost IP:80>

              SuexecUserGroup PATH PATH

              DocumentRoot /home/PATH/DOMAIN.COM/html
              ServerName DOMAIN.COM

              ServerAlias www.DOMAIN.COM ftp.DOMAIN.COM mail.DOMAIN.COM secure.DOMAIN.COM scripts.DOMAIN.COM
              ServerAlias help.DOMAIN.COM
              ServerAdmin [email protected]

              # subdomain logic
              RewriteEngine On
              RewriteOptions inherit
              RewriteCond %{HTTP_HOST} !^www\.tandgweb\.com [NC]
              RewriteCond %{HTTP_HOST} !^PATH\.com [NC]
              RewriteCond %{HTTP_HOST} ^([A-Z0-9a-z-.]+)\.PATH\.com [NC]
              RewriteCond %{DOCUMENT_ROOT}/%1 -d
              RewriteRule ^(.+) %{HTTP_HOST}/$1 [C]
              RewriteRule ^([0-9A-Za-z-.]+)\.PATH\.com/?(.*)$ %{DOCUMENT_ROOT}/$1/$2 [L]

              RewriteCond %{HTTP_HOST} ^www\.([A-Z0-9a-z-.]+)\.PATH\.com [NC]
              RewriteCond %{DOCUMENT_ROOT}/%1 -d
              RewriteRule ^(.+) %{HTTP_HOST}/$1 [C]
              RewriteRule ^www\.([0-9A-Za-z-.]+)\.PATH\.com/?(.*)$ %{DOCUMENT_ROOT}/$1/$2 [L]
              # end subdomain logic

              ErrorLog /home/PATH/var/PATH.com/logs/error.log
              CustomLog /home/PATH/var/PATH.com/logs/transfer.log combined

              # php: default  don't edit between this and the "end php" comment below
              <IfModule mod_suphp.c>
                suPHP_Engine On
                suPHP_UserGroup PATH PATH
                AddHandler x-httpd-php .php
                suPHP_AddHandler x-httpd-php .php
                suPHP_ConfigPath /home/PATH/etc
              </IfModule>

              <IfModule !mod_suphp.c>
                <IfModule mod_php5.c>
                  php_admin_flag engine On
                </IfModule>
                <IfModule mod_php4.c>
                  php_admin_flag engine On
                </IfModule>
              </IfModule>
              # end php

              # cgi: 1 don't edit between this and the "end cgi" comment below
              <Directory /home/PATH/PATH.com/html>
                AllowOverride  All
              </Directory>

              <Location />
                Options +ExecCGI
              </Location>
              ScriptAlias /cgi-bin/ /home/PATH/PATH.com/html/cgi-bin/
              # end cgi


              <IfModule mod_interworx_settings.c>
                # InterWorx adds this dummy module section to store settings
                # There is no mod_interworx_settings module
                # DO NOT DELETE

                last_update 2014-01-10 00:10:18
                iworx_controlled_ips IP:80
              </IfModule>
            </VirtualHost>
            <VirtualHost IP:443>

              SuexecUserGroup PATH PATH

              DocumentRoot /home/PATH/PATH.com/html
              ServerName PATH.com

              ServerAlias www.PATH.com ftp.PATH.com mail.PATH.com secure.PATH.com scripts.PATH.com
              ServerAlias help.PATH.com
              ServerAdmin [email protected]

              # subdomain logic
              RewriteEngine On
              RewriteOptions inherit
              RewriteCond %{HTTP_HOST} !^www\.PATH\.com [NC]
              RewriteCond %{HTTP_HOST} !^PATH\.com [NC]
              RewriteCond %{HTTP_HOST} ^([A-Z0-9a-z-.]+)\.PATH\.com [NC]
              RewriteCond %{DOCUMENT_ROOT}/%1 -d
              RewriteRule ^(.+) %{HTTP_HOST}/$1 [C]
              RewriteRule ^([0-9A-Za-z-.]+)\.PATH\.com/?(.*)$ %{DOCUMENT_ROOT}/$1/$2 [L]

              RewriteCond %{HTTP_HOST} ^www\.([A-Z0-9a-z-.]+)\.PATH\.com [NC]
              RewriteCond %{DOCUMENT_ROOT}/%1 -d
              RewriteRule ^(.+) %{HTTP_HOST}/$1 [C]
              RewriteRule ^www\.([0-9A-Za-z-.]+)\.PATH\.com/?(.*)$ %{DOCUMENT_ROOT}/$1/$2 [L]
              # end subdomain logic

              ErrorLog /home/PATH/var/PATH.com/logs/error.log
              CustomLog /home/PATH/var/PATH.com/logs/transfer.log combined

              # php: default  don't edit between this and the "end php" comment below
              <IfModule mod_suphp.c>
                suPHP_Engine On
                suPHP_UserGroup PATH PATH
                AddHandler x-httpd-php .php
                suPHP_AddHandler x-httpd-php .php
                suPHP_ConfigPath /home/PATH/etc
              </IfModule>

              <IfModule !mod_suphp.c>
                <IfModule mod_php5.c>
                  php_admin_flag engine On
                </IfModule>
                <IfModule mod_php4.c>
                  php_admin_flag engine On
                </IfModule>
              </IfModule>
              # end php

              # cgi: 1 don't edit between this and the "end cgi" comment below
              <Directory /home/PATH/PATH.com/html>
                AllowOverride  All
              </Directory>

              <Location />
                Options +ExecCGI
              </Location>
              ScriptAlias /cgi-bin/ /home/PATH/PATH.com/html/cgi-bin/
              # end cgi


             SSLEngine on
              SSLHonorCipherOrder On
              SSLCipherSuite RC4:HIGH:MEDIUM:!SSLv2:!ADH:!aNULL:!eNULL:!NULL:!LOW
              SSLCACertificatePath /home/PATH/var/PATH.com/ssl
              SSLCertificateKeyFile /home/PATH/var/PATH.com/ssl/PATH.com.priv.key
              SSLCertificateFile /home/PATH/var/PATH.com/ssl/PATH.com.crt
              SSLCACertificateFile /home/PATH/var/PATH.com/ssl/PATH.com.chain.crt
              SSLOptions +ExportCertData +StrictRequire
              SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
              <IfModule mod_interworx_settings.c>
                # InterWorx adds this dummy module section to store settings
                # There is no mod_interworx_settings module
                # DO NOT DELETE

                last_update 2014-01-10 00:10:18
                iworx_controlled_ips IP:443
              </IfModule>
            </VirtualHost>

            <VirtualHost IP:2443>
             SSLEngine on
              SSLHonorCipherOrder On
              SSLCipherSuite RC4:HIGaH:MEDIUM:!SSLv2:!ADH:!aNULL:!eNULL:!NULL:!LOW
              SSLCACertificatePath /home/PATH/var/PATH.com/ssl
              SSLCertificateKeyFile /home/PATH/var/PATH.com/ssl/PATH.com.priv.key
              SSLCertificateFile /home/PATH/var/PATH.com/ssl/PATH.com.crt
              SSLCACertificateFile /home/PATH/var/PATH.com/ssl/PATH.com.chain.crt
              SSLOptions +ExportCertData +StrictRequire
              SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
              <strong></strong>

答案1

正如所指出的这个答案,您可以让一个 vhost 服务多个端点。

只需更改<VirtualHost IP:443><VirtualHost IP:443 IP:2443>
现在,您将在端口 443 和 2443 上获得相同的站点/虚拟主机

确保配置设置为监听端口 2443:

Listen 2443
NameVirtualHost IP:2443

相关内容