[Xymon] XYMon using incorrect certificate for SSL
Henrik Størner
henrik at hswn.dk
Sun Apr 19 13:45:12 CEST 2020
Try adding the "sni" setting to the entry in Xymon's hosts.cfg - by
default Xymon doesn't send the SNI SSL parameter.
(Yes, this should be the default by now).
Regards,
Henrik
Den 19.04.2020 kl. 11.08 skrev FreeSoftwareServers:
>
> I have a server which has both NGinX and Apache2 serving multiple
> sites. I have “main” domain freesoftwareservers.com and a wildcard
> cert which is set “globally” with NGinX.
>
> Eg:
>
> In my freesoftwareservers.conf
>
> ##GLOBAL SSL
>
> ssl_certificate /etc/ssl/personal/fsws/fsws.crt;
>
> ssl_certificate_key /etc/ssl/personal/fsws/fsws.key;
>
> server {
>
> }
>
> But I have another domain using LetsEncrypt and its setup like so
> (note, all my apache sites are served via nginx redirect to apache):
>
> server {
>
> listen 443 ssl;
>
> server_name domain.tld;
>
> ssl on;
>
> ssl_certificate /etc/letsencrypt/live/ domain.tld /cert.pem;
>
> ssl_certificate_key /etc/letsencrypt/live/ domain.tld /privkey.pem;
>
> }
>
> But xymon is only using my wildcard cert for both domains. Is there
> something setup incorrectly in my setup or a fix for XYMon I can use?
> Using latest w/ Ubuntu so 4.28.
>
> Thanks!
>
>
> _______________________________________________
> Xymon mailing list
> Xymon at xymon.com
> http://lists.xymon.com/mailman/listinfo/xymon
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20200419/94a3b257/attachment.htm>
More information about the Xymon
mailing list