1

Possible Duplicate:
Multiple domains with SSL on same IP

We are planning to host Magento websites in a dedicated server. Is it possible to host ~40 Magento websites per dedicated server. Each site requires SSL. So,I guess separate dedicated IP required for each 40 SSL certificates.

Since hosting providers running out of IPs,can we have 40 dedicated ips per server or can a single dedicated IP can be used for 40 SSL sites? Looking forward for your suggestions.

blakcaps
  • 115
  • 6

1 Answers1

1

Providing that you'll use apache you'd better go with 40 IPs. I'm just quoting:

Name-Based VirtualHosts and SSL

As a rule, it is impossible to host more than one SSL virtual host on the same IP address and port. This is because Apache needs to know the name of the host in order to choose the correct certificate to setup the encryption layer. But the name of the host being requested is contained only in the HTTP request headers, which are part of the encrypted content. It is therefore not available until after the encryption is already negotiated. This means that the correct certificate cannot be selected, and clients will receive certificate mismatch warnings and be vulnerable to man-in-the-middle attacks.

In reality, Apache will allow you to configure name-based SSL virtual hosts, but it will always use the configuration from the first-listed virtual host (on the selected IP address and port) to setup the encryption layer. In certain specific circumstances, it is acceptable to use a single SSL configuration for several virtual hosts. In particular, this will work if the SSL certificate applies to all the virtual hosts. For example, this will work if: [...]

Src: http://wiki.apache.org/httpd/NameBasedSSLVHosts

hmontoliu
  • 3,693
  • 3
  • 22
  • 24
  • The wiki page you're linking to isn't completely up-to-date. It's worth mentioning SNI http://wiki.apache.org/httpd/NameBasedSSLVHostsWithSNI (although browser support may still be an issue). – Bruno Aug 19 '11 at 11:48