Results 1 to 2 of 2

Thread: Commercial certs with split DNS config

  1. #1
    SPF
    SPF is offline Active Member
    Join Date
    Oct 2006
    Posts
    27
    Rep Power
    8

    Default Commercial certs with split DNS config

    In general, how do people handle this?

    My goal here is to eliminate any 'cert name mismatch' woes and other user problems associated with using the self-signed certificate.

    So..given a single zimbra server accessed in two ways:
    mail.company.com x.x.x.x (valid Internet FQDN and IP address used by external employees and the world)
    -and-
    mail 192.168.0.x (internal, non-routable address used by internal clients. Resolved via internal private DNS servers)

    Can a single commercial certificate ever handle this situation? My guess is that two separate commercial certs will need to be purchased and installed?

    Will that cause any problems for Zimbra? Can they be installed via Administration console? Thank you.

  2. #2
    aurfalien is offline Senior Member
    Join Date
    Jan 2009
    Posts
    65
    Rep Power
    6

    Default

    Hi SPF,

    Heres my setup.

    External DNS via DynDNS (static DNS, not DHCP).

    Internal DNS via BIND server.

    External DNS resolves mail.foo.com to WAN IP.

    Internal DNS resolves mail.foo.com to LAN IP (non routable addy).

    I use 1 cert on my Zimbra server from GoDaddy.

    The cert is keyed to hostname, not IP addy so as long as both WAN and LAN clients hit https://mail.foo.com, you are fine.

    I'm pretty sure all certs are this way (keyed to host name) and not keyed to IP.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. bayes db..
    By osiris in forum Administrators
    Replies: 9
    Last Post: 06-15-2011, 11:14 AM
  2. LDAP Cannot bind on migration to new server
    By neekster in forum Migration
    Replies: 23
    Last Post: 03-09-2009, 02:08 AM
  3. speed up the net
    By mcesari in forum Administrators
    Replies: 10
    Last Post: 04-25-2008, 11:24 AM
  4. SLES10 installation issue (split DNS config)
    By swacongne in forum Installation
    Replies: 2
    Last Post: 03-26-2007, 12:54 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •