I'm currently working on a client/server order system that uses SSL with client and server certificates. I'm using OpenSSL via Ruby. Everything has been working well, but we need to add a new trading partner to the system and they required us to get a different certificate for use only with them.
Is it possible to use a different server certificate based on the client IP address? I am attempting to get a TCP connection, check the source IP, and then create an SSL context with the correct certificate, and establish an SSL connection using that context. It doesn't seem to be working, but I can't tell exactly what's going wrong. It it something in my implementation or is my method completely wrong? If so, is there any way to accomplish my goal? I've searched the archives, but most similar cases seem to be dealing with web servers and virtual hosting where the certificate should change based on the requested host, but I need to choose the certificate based on client IP. Thanks, Jeremy ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
