Configure Apache to serve multiple subdomains via HTTP + HTTPS

debian apache-http-server ssl virtual-host
10,456

Apache can see the hostname requested, using TLS Server Name Indication.

However, this requires a relatively recent web browser. For example, those using Internet Explorer on Windows XP will receive certificate mismatch messages for additional domains. (Thankfully, WinXP/IE users are almost extinct.) The Wikipedia article has a list, and here's a test page if you're unsure.

NameVirtualHost *:80

<VirtualHost *:80>
    ServerName example.com
    ServerAlias www.example.com
    DocumentRoot /var/www
    <Directory /var/www/>
        Options Indexes FollowSymlinks MultiViews
    </Directory>
</VirtualHost>

NameVirtualHost *:443

<VirtualHost *:443>
    ServerName example.com
    ServerAlias www.example.com
    DocumentRoot /var/www
    <Directory /var/www/>
        Options Indexes FollowSymlinks MultiViews
    </Directory>

    SSLEngine on
    SSLCertificateFile /etc/ssl/private/example.com.pem
</VirtualHost>

Additional (sub)domains:

<VirtualHost *:80>
    ServerName foo.example.com
    DocumentRoot /sites/foo
</VirtualHost>

<VirtualHost *:443>
    ServerName foo.example.com
    DocumentRoot /sites/foo

    SSLEngine on
    SSLCertificateFile /etc/ssl/private/foo.example.com.pem
</VirtualHost>
Share:
10,456

Related videos on Youtube

Apache User
Author by

Apache User

Updated on September 17, 2022

Comments

  • Apache User
    Apache User over 1 year

    I have a virtual server hosted at ISP with 2 public IPv4 addresses. I want to run several subdomains (more than 2) with Apache and serve them via both HTTP and HTTPS. The SSL cert is a wildcard one for *.mydomain.com.

    I tried to configure Apache in Debian this way but failed. Either my virtualhosts are not accepted or I get SSL errors. (I know that Apache doesn't see hostname requested before serving the cert but the cert includes all subdomains possible)

    Please help to create an httpd.conf that works best with Debian's Apache config layout.

    All the details:

    • Apache listening on *:80 for HTTP and *:443 for HTTPS
    • All NameVirtualHosts, aliases etc. shall be defined for both ports/protocols at once
    • default mydomain.com and www.mydomain.com should root to /var/www
    • additional NameVirtualHosts for foo.mydomain.com and bar.mydomain.com etc. which can be configured specially, e.g. to have another DocumentRoot
  • Apache User
    Apache User over 13 years
    Thank you very much for your educated reply! It's just that I would prefer not relying on this recent feature... I have a .mydomain.tld wildcard cert and want to define SSL for *all subdomains at once. What I was looking for is a way to define the namevirtualhosts once and let them be served via HTTP and HTTPs without doubled entries.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Apache SSL error: Re-negotiation handshake failed: Not accepted by client?
Why is Apache listening on port 443 with http but not on https?
Apache 2 with SSL virtual host on different port 8080 or 8081 in Linux
/usr/local/ssl/lib/libcrypto.a: could not read symbols: Bad value
How do you set up SSL certificates for additional ports in Apache?
Apache not listening on port 443
Nginx Redirect to Docker Container
How can you redirect port 80 to 443 for SSL correctly?
Already uninstalled apache2 in Debian but it's still there?
Apache2 reverse proxy and refused HTTPS connection