I have a single Nginx server configured to listen on two IPs on my VPS host -- an external/public IP (X.X.X.55) and an internal/LAN IP (10.10.10.55).
Atm, it's a *single* "server_name" (host.example.com) for both IPs ... handled by a split-horizon DNS that returns the IP address for that hostname depending on the query origin -- public net, or internal LAN. It works as expected. I'd _like_ to setup different SSL cert/key/CA handshake configs to be used -- depending on the ingress IP. Specifically, for ingress via internal/LAN IP (10.10.10.55), I want to use an internally generated, self-signed cert -- from my own/local CA -- with ssl verify ON, and for ingress via external/public IP (X.X.X.55), I want to use a LetsEncrypt-generated public cert, with ssl verify OFF. Is this^ possible with Nginx config? Any examples? Posted at Nginx Forum: https://forum.nginx.org/read.php?2,287957,287957#msg-287957 _______________________________________________ nginx mailing list [email protected] http://mailman.nginx.org/mailman/listinfo/nginx
