On Wed, 25 Mar 2015 12:40:11 -0500
>> I took the server.key and server.crt files to an older machine (actually,
>> the one I am trying to replace) that is running 4.9 (I
>> think) and apache.
>
> On Wednesday, March 25, 2015 1:52 PM:
>
>Why not see if you can get it working with pound from packages/ports
>(very quick) on the new machine and that will help you work out if it's
>related to httpd or something else?
Thank you for the suggestion. I was not aware of "pound."
Now I am. So, I installed pound.
Setup a basic pound config.
---
User "_pound"
Group "_pound"
RootJail "/var/empty"
# 0=none, 1=normal, 2=extended, 3=CLF, etc.
LogLevel 1
ListenHTTPS
Address 10.0.128.67
Port 443
Cert "/etc/ssl/server.crt.pound"
Service
BackEnd
Address 127.0.0.1
Port 80
End
End
End
----
Then, I combined the server.crt and server.key files into one ->
server.crt.pound (pound requires the key and cert in the same
file, I figured that out pretty quick).
Removed the "listen on * tls port 443" line from httpd.conf
Stopped httpd.
Started pound.
Restarted httpd.
And...
When I try "http://10.0.128.67/index.html"; - I get the index page.
When I try "https://10.0.128.67/index.html"; - I get a nice message from firefox
asking me to accept a problem certificate (this was
expected, the certificate is the "correct" one), and when I do accept the
certificate, I get the index page.
So, I am not sure what is wrong, but it appears httpd is not responding to
https requests, even with the "listen on tls" line in the
configuration file.
Is there anything for me to look at/consider in trying to correct this?
Thanks
Ted
