Re: Need help with SSL on Apache
Posted: 2020/03/26 00:35:19
The host command only looks at dns which is why I subsequently edited my original post and changed it to ping.
The Community ENTerprise Operating System
https://forums.centos.org/
Code: Select all
$ sudo cat httpd/ssl_error_log
[Wed Mar 25 23:52:31.445983 2020] [ssl:warn] [pid 44623] AH01909: RSA certificate configured for dgbvm.internal.cloudapp.net:443 does NOT include an ID which matches the server name
Code: Select all
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/bb6d0c0348ed0020.crt
SSLCertificateKeyFile /etc/pki/tls/private/lac.key <------ ????
SSLCertificateChainFile /etc/pki/tls/certs/gd_bundle-g2-g1.crt
Code: Select all
-- Unit httpd.service has begun starting up.
Jul 17 13:06:04 dgbvm.internal.cloudapp.net httpd[50481]: (98)Address already in use: AH00072: make_sock: could not bind to address [::]:443
Jul 17 13:06:04 dgbvm.internal.cloudapp.net systemd[1]: httpd.service: main process exited, code=exited, status=1/FAILURE
Jul 17 13:06:04 dgbvm.internal.cloudapp.net systemd[1]: Failed to start The Apache HTTP Server.
-- Subject: Unit httpd.service has failed
Code: Select all
$ ss -antupl | grep 443
tcp LISTEN 0 128 [::]:443 [::]:*
Code: Select all
$ ping www.xyz.com
PING xyz.com (10.0.0.5) 56(84) bytes of data.
64 bytes from xyz.com (10.0.0.5): icmp_seq=1 ttl=64 time=0.025 ms
64 bytes from xyz.com (10.0.0.5): icmp_seq=2 ttl=64 time=0.036 ms
64 bytes from xyz.com (10.0.0.5): icmp_seq=3 ttl=64 time=0.039 ms
64 bytes from xyz.com (10.0.0.5): icmp_seq=4 ttl=64 time=0.021 ms
Code: Select all
SSLCertificateFile /etc/pki/tls/certs/bb6d0c0398ed0020.crt
SSLCertificateKeyFile /etc/pki/tls/private/xyz.key
Code: Select all
$ sudo openssl req -new -newkey rsa:2048 -nodes -keyout xyz.com.key -out xyz.com.csr
Code: Select all
Redirect permanent / https://xyz.com/