Port numbers for SSL

https server iis7 iis configuration
5,858

Actually you CAN host multiple SSL sites on port 443. The following code in your apache config file will do the trick.

Otherwise, you can use whatever ports you want. The disadvantage will be that users will have to include the port number in the URL (eg. https://yourdomain.com:445/)

## SSL (HTTPS) PORT 443
Listen 443
NameVirtualHost *:443

LoadModule ssl_module modules/mod_ssl.so
SSLPassPhraseDialog  builtin
SSLSessionCache         shmcb:/var/cache/mod_ssl/scache(512000)
SSLSessionCacheTimeout  300
SSLMutex default
SSLRandomSeed startup file:/dev/urandom  256
SSLRandomSeed connect builtin
SSLCryptoDevice builtin

<VirtualHost *:443>
  ServerName host1.com

  SSLEngine on
  SSLOptions +StrictRequire
  SSLProtocol -all +TLSv1 +SSLv3
  SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM
  SSLCertificateFile    /etc/httpd/ssl/host1.crt
  SSLCertificateKeyFile /etc/httpd/ssl/host1.key
  SSLVerifyClient none
  SSLProxyEngine off

  SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
  CustomLog logs/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

  DocumentRoot /var/www/host1/

  <Directory "/var/www/host1/">
    Options Indexes FollowSymLinks
    AllowOverride All
    Order Allow,deny
    Allow from all
  </Directory>

</VirtualHost>


<VirtualHost *:443>
  ServerName host2.com

  SSLEngine on
  SSLOptions +StrictRequire
  SSLProtocol -all +TLSv1 +SSLv3
  SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM
  SSLCertificateFile    /etc/httpd/ssl/host2.crt
  SSLCertificateKeyFile /etc/httpd/ssl/host2.key
  SSLVerifyClient none
  SSLProxyEngine off

  SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
  CustomLog logs/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

  DocumentRoot /var/www/host2/

  <Directory "/var/www/host2/">
    Options Indexes FollowSymLinks
    AllowOverride All
    Order Allow,deny
    Allow from all
  </Directory>

</VirtualHost>
Share:
5,858

Related videos on Youtube

Cobus Kruger
Author by

Cobus Kruger

Updated on September 18, 2022

Comments

  • Cobus Kruger
    Cobus Kruger over 1 year

    We have an existing web site with HTTP on port 80 and HTTPS on port 443. I'm adding a second site to that now, and from what I understand, I cannot host two sites on the same SSL port.

    So my question is: which port number range is appropriate for me to use as my SSL port on the second site?

    • Simon Hayter
      Simon Hayter about 11 years
      I could be wrong but a believe a valid SSL certification requires to be on port 443, and believe this is why shared hosting give you a dedicated IP address when purchasing a SSL. But.... this is not my field hopefully some other geeky person can confirm.
  • Cobus Kruger
    Cobus Kruger about 11 years
    Thanks, but this is an IIS site. Any clue how I would go ahead to do the same?
  • Cobus Kruger
    Cobus Kruger about 11 years
    I did use host header names, and the two sites are in the form first.mycompany.com and second.mycompany.com. The problem is that on "Advanced Web Site Identification" there are three columns for HTTP (IP address, TCP port and Host header value) but only two for HTTPS (IP address and SSL port), so it doesn't actually seem to be possible from what I can see.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

https not working with www and DNS redirect isn't helping
IIS HTTP to HTTPS relative redirect
How to deal with mixed content in a website which should be secured as https?
Setup a redirection in IIS with parameters carried over
Leverage browser caching
IIS 7 Configuration Paths
Unable to set upload_tmp_dir on IIS
How can I have multiple apache sites under the same domain?
Why my USB Modem won't displayed as /dev/ttyUSB0?
/etc/postfix/transport missing; what should it look like?