Re: Multiple Secure Sites

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Ohaya (Ohaya_at_NO_SPAM.cox.net)
Date: 03/09/04 

Date: Tue, 9 Mar 2004 00:11:16 -0500

"abing" <anonymous@discussions.microsoft.com> wrote in message
news:91e601c40564$9a6ed600$a001280a@phx.gbl...
> I have a Win2k Advanced member server on a company
> intranet. I am administering 3 websites on the server
> with 1 ip address and I have users inside and outside of a
> firewall on the domain I am on. I have the sites
> seperated using host header names. However so users
> outside of the firewall could gain access to the sites I
> got SSL Certificates for all three sites issued from a
> group within the company I work for. It is my
> understanding that for SSL I could use port numbers to
> direct users to a specific site. For example :
> https://myfirstwebsite.com:2443
> However this does not work for users outside of the
> firewall. Inside of the firewall it works perfectly.Only
> the default website (it is the first one I got a SSL
> certificate for) can be seen by users outside of the
> firewall by typing https://myfirstwebsite.com. The
> firewall people tell me that using the port numbers should
> work. Is there something I am missing or not setting up
> properly. Any suggestions would be greatly appreciated.
>
> Adrienne

Adrienne,

I'm a bit confused by your post. In the first part, you indicate you use
host headers for the website, but in the latter part, you indicate that you
are using port numbers.

Are you using both host headers and port numbers for the different sites?

If so, host headers don't work with SSL websites on IIS:

http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/Q187/5/04.ASP&NoWebContent=1

BTW, if that is the case that you are using both host headers and port
number for each website, then I think that port numbers alone should be
enough (i.e., so you wouldn't need the host headers). You could set up each
website with different port numbers.

Relevant Pages

  • Re: Multiple Secure Sites
    ... different SSL port numbers for all 3 sites. ... outside of the firewall, I keep getting the error message ... >> the default website (it is the first one I got a SSL ... >host headers for the website, but in the latter part, you ...
    (microsoft.public.inetserver.iis)
  • RE: Blocking Port scans
    ... it is not a function of a firewall to block / ... If you want to detect port scans you need IDS functionality, ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ...
    (Pen-Test)
  • RE: multiple websites on sbs2003 server
    ... Are you using ISA or a standard firewall/router? ... firewall router, all you'll get is your default website. ... that basic firewall can do is PORT forward. ...
    (microsoft.public.windows.server.sbs)
  • Re: IIS on SBS 2003 behind COX Cable...
    ... Under 'network connections', get to the network adapter in question, and ... to the exceptions tab and add a new port. ... firewall and see port 81 services. ... I have the default website up and running and configured to my>>> external LAN Card. ...
    (microsoft.public.inetserver.iis)
  • Re: Blocking Port scans
    ... It is easy to bypass firewall portscan protection and even IDS ... > detect port scans. ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ...
    (Pen-Test)