Sorry, a little mistake in my description .
It should be .
SSLEnabled="true" defaultSSLHostConfigName="10.100.142.31" >
<UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" />
<SSLHostConfig hostName="10.100.142.31"
protocols="TLSv1.2,+TLSv1.1,+TLSv1">
But also (see below) is not working.
SSLEnabled="true" defaultSSLHostConfigName="two.domain.loc" >
<UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" />
<SSLHostConfig hostName="two.domain.loc"
protocols="TLSv1.2,+TLSv1.1,+TLSv1">
Jaebo Nah
Deutsche Pfandbriefbank AG
Information Technology
Application Management Front Office
Ludwig-Erhard-Strasse 14
65760 Eschborn, Germany
T: +49 6196 9727-209
[email protected]
http://www.pfandbriefbank.com
Bitte denken Sie an die Umwelt und verzichten möglichst auf den Ausdruck von
E-Mails.
Please think about the environment before printing the email.
Management Board: Andreas Arndt (CEO), Thomas Köntgen (Deputy CEO), Andreas
Schenk, Marcus Schulte; Chairman of the Supervisory Board: Dr. Günther Bräunig;
Registered office: Munich; Legal form: Aktiengesellschaft; Commercial register:
Local Court Munich, HRB 41054
The information contained in this message is confidential or protected by law.
If you are not the intended recipient, please contact the sender and delete
this message. Any unauthorized copying of this message or unauthorized
distribution of the information contained herein is prohibited.
Unsere aktuell gültigen Datenschutzhinweise finden Sie unter
https://www.pfandbriefbank.com/datenschutz/europaeische-datenschutz-grundverordnung-eu-dsgvo.html
The currently valid data protection information can be found at
https://www.pfandbriefbank.com/en/privacy/translate-to-english-europaeische-datenschutz-grundvero.html
From: Jaebo Nah
Sent: Friday, January 21, 2022 10:30 AM
To: '[email protected]' <[email protected]>
Subject: tomcat-10.0.x Problem https multiple IP
Dear all,
I want to use a Tomcat apache-tomcat-10.0.14 with https .
The Linux Server have multiple ip Address with different Domain Names
10.100.142.30 = one.domain.loc
10.100.142.31 = two.domain.loc
10.100.142.32 = three.domain.loc
When I try to connect to the Tomcat with https://two.domain.loc:8443
I get the following Error
NET::ERR_CERT_COMMON_NAME_INVALID
This server could not prove that it is two.domain.loc. Its security certificate
is from three.domain.loc. Possible reasons are a misconfiguration or an
attacker intercepting your connection.
The connection to one.domain.loc is similar as two.domain.loc .
Only the connection to three.domain.loc is working.
Thx for your answer
server.xml
<Connector
address=" two.domain.loc"
port="8443"
protocol="org.apache.coyote.http11.Http11Nio2Protocol"
maxThreads="150"
scheme="https"
enableLookups="false"
SSLEnabled="true" defaultSSLHostConfigName="10.100.142.32" >
<UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" />
<SSLHostConfig hostName="10.100.142.32"
protocols="TLSv1.2,+TLSv1.1,+TLSv1">
<Certificate
certificateKeystoreFile="/apps/vr_apps/keystore/jlib.jks.2020.11"
certificateKeystorePassword="changeit"
type="RSA" />
</SSLHostConfig>
</Connector>
ifconfig
myeth0:1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.100.142.30 netmask 255.255.255.128 broadcast 10.100.142.127
ether 00:50:56:a7:4f:5d txqueuelen 1000 (Ethernet)
myeth0:2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.100.142.31 netmask 255.255.255.128 broadcast 10.100.142.127
ether 00:50:56:a7:4f:5d txqueuelen 1000 (Ethernet)
myeth0:3: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.100.142.32 netmask 255.255.255.128 broadcast 10.100.142.127
ether 00:50:56:a7:4f:5d txqueuelen 1000 (Ethernet)
