-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Doug Poland <[EMAIL PROTECTED]> wrote:
>
> So, is the bottom line, one *cannot* hide multiple (NAT'd) SSL hosts 
> behind a single public IP?  So my only solution, given apache and one 
> public IP, is a single host listening on 443 and each "domain" would 
> have to be served as a <Directory></Directory>.  e.g.,
> 
>   https://secure.example.com/webmail/
>   https://secure.example.com/subversion/

That is one method; another is to use TCP port numbers to differentiate
the servers:

    https://webmail.example.com:444/
    https://subversion.example.com:445/

You can have PF forward the correct port to the correct server.  This
allows the servers to be more independent of one another.

- -- 
David DeSimone == Network Admin == [EMAIL PROTECTED]
"This email message is intended for the use of the person to whom
 it has been sent, and may contain information that is confidential
 or legally protected.  If you are not the intended recipient or have
 received this message in error, you are not authorized to copy, dis-
 tribute, or otherwise use this message or its attachments.  Please
 notify the sender immediately by return e-mail and permanently delete
 this message and any attachments.  Verio, Inc. makes no warranty that
 this email is error or virus free.  Thank you."  --Lawyer Bot 6000
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFHlPK3FSrKRjX5eCoRAt+7AKCF/mClCPN5Wzh9mUk8A157esU6hACdG7zD
rPZR6UTRRwtJ4KKH/2KPwyI=
=g76r
-----END PGP SIGNATURE-----
_______________________________________________
freebsd-pf@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to