How to handle SSL Cert Clients with same hostname reporting to xymon
list Jacob Paul Jordan
Folks, I have a Godaddy cert that is suppose to work on multiple servers BUT they must have the same hostname. If I put the same hostname on the servers the Cert works but xymon is not happy. Is there a way to collect data from 3 different ips that have the same hostname and they report separately? Paul Jordan
list Zep
▸
On 11/03/2014 04:47 PM, Jacob Paul Jordan wrote:
Folks, I have a Godaddy cert that is suppose to work on multiple servers BUT they must have the same hostname. If I put the same hostname on the servers the Cert works but xymon is not happy. Is there a way to collect data from 3 different ips that have the same hostname and they report separately? Paul Jordan
I believe the expected config is to have something like: ssl hostname set foobar.tld.net hosts foobar01, foobar02, foobar03 .... etc .tld.net apache/whatever http server you're using on host foobar01 configured to set 'ServerName' to foobar.tld.net [just the apache server set to this, not the whole host] and repeated through the rest of your complex. -- public gpg key id: AE60F64C
list Jacob Paul Jordan
I replied to zep instead of forum. Paul -------- Original Message -------- Subject: Re: [Xymon] How to handle SSL Cert Clients with same hostname reporting to xymon Date: Wed, 12 Nov 2014 22:29:55 -0600 From: Jacob Paul Jordan <user-0cdbed8d7575@xymon.invalid> To: zep <user-7203df77e300@xymon.invalid> the ssl certs are tied to the hostname of the machine (not apache) apparently. Also are you talking about the bbhosts file for the config. I currently the following hosts that need to be changed to login.publicdata.com as they will have the same ssl cert The current client name is the hostname of the machine. All four need to be login.publicdata.com. But if I do that, the certs work but xymon gets very grumpy and quits reporting data for any of them. 192.168.142.104 www4 # testip http://192.168.142.104 CLIENT:104SHADOW apache=http://192.168.142.104/server-status?auto 192.168.142.105 www5 # testip http://192.168.142.105 CLIENT:105SHADOW apache=http://192.168.142.105/server-status?auto 192.168.142.106 www6 # testip http://192.168.142.106 CLIENT:106SHADOW apache=http://192.168.142.106/server-status?auto 192.168.142.117 login # testip http://192.168.142.117 CLIENT:login.publicdata.com apache=http://192.168.142.117/server-status?auto Paul
▸
On 11/3/2014 4:37 PM, zep wrote:On 11/03/2014 04:47 PM, Jacob Paul Jordan wrote:Folks, I have a Godaddy cert that is suppose to work on multiple servers BUT they must have the same hostname. If I put the same hostname on the servers the Cert works but xymon is not happy. Is there a way to collect data from 3 different ips that have the same hostname and they report separately? Paul JordanI believe the expected config is to have something like: ssl hostname set foobar.tld.net hosts foobar01, foobar02, foobar03 .... etc .tld.net apache/whatever http server you're using on host foobar01 configured to set 'ServerName' to foobar.tld.net [just the apache server set to this, not the whole host] and repeated through the rest of your complex.
list Galen Johnson
I believe you want something like (I needed to do something similar): 192.168.142.104<http://192.168.142.104/>; www4 # testip <http://login.publicdata.com=192.168.142.104/>; http://login.publicdata.com=192.168.142.104/ ... =G=
▸
From: Xymon <xymon-bounces at xymon.com> on behalf of Jacob Paul Jordan <user-0cdbed8d7575@xymon.invalid> Sent: Wednesday, November 12, 2014 11:37 PM To: xymon at xymon.com Subject: [Xymon] Fwd: Re: How to handle SSL Cert Clients with same hostname reporting to xymon I replied to zep instead of forum. Paul -------- Original Message -------- Subject: Re: [Xymon] How to handle SSL Cert Clients with same hostname reporting to xymon Date: Wed, 12 Nov 2014 22:29:55 -0600 From: Jacob Paul Jordan <user-0cdbed8d7575@xymon.invalid><mailto:user-0cdbed8d7575@xymon.invalid> To: zep <user-7203df77e300@xymon.invalid><mailto:user-7203df77e300@xymon.invalid> the ssl certs are tied to the hostname of the machine (not apache) apparently. Also are you talking about the bbhosts file for the config. I currently the following hosts that need to be changed to login.publicdata.com as they will have the same ssl cert The current client name is the hostname of the machine. All four need to be login.publicdata.com. But if I do that, the certs work but xymon gets very grumpy and quits reporting data for any of them. 192.168.142.104 www4 # testip http://192.168.142.104 CLIENT:104SHADOW apache=http://192.168.142.104/server-status?auto 192.168.142.105 www5 # testip http://192.168.142.105 CLIENT:105SHADOW apache=http://192.168.142.105/server-status?auto 192.168.142.106 www6 # testip http://192.168.142.106 CLIENT:106SHADOW apache=http://192.168.142.106/server-status?auto 192.168.142.117 login # testip http://192.168.142.117 CLIENT:login.publicdata.com apache=http://192.168.142.117/server-status?auto Paul On 11/3/2014 4:37 PM, zep wrote: On 11/03/2014 04:47 PM, Jacob Paul Jordan wrote: Folks, I have a Godaddy cert that is suppose to work on multiple servers BUT they must have the same hostname. If I put the same hostname on the servers the Cert works but xymon is not happy. Is there a way to collect data from 3 different ips that have the same hostname and they report separately? Paul Jordan I believe the expected config is to have something like: ssl hostname set foobar.tld.net hosts foobar01, foobar02, foobar03 .... etc .tld.net apache/whatever http server you're using on host foobar01 configured to set 'ServerName' to foobar.tld.net [just the apache server set to this, not the whole host] and repeated through the rest of your complex.