Announcement

Collapse
No announcement yet.

alternate domains, SSL, redirecting-forwarding

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    alternate domains, SSL, redirecting-forwarding

    More of a server admin question I guess. A client has an similar alternate domain name where they have an email server. They point the web traffic to the Miva store. SSL renewal came up and are having trouble with it. I don't know what the real problem is but the client is being asked for the public/private key type of information from the Miva store domain. I don't know why they need this info to simply redirect/forward the web traffic.

    How should this work?

    Scott
    Need to offer Shipping Insurance?
    Interactive Design Solutions https://www.myids.net
    MivaMerchant Business Partner | Certified MivaMerchant Web Developer
    Competitive Rates, Custom Modules and Integrations, Store Integration
    AutoBaskets|Advanced Waitlist Integration|Ask about Shipping Insurance Integration
    My T-shirt Collection is mostly MivaCon T-shirts!!
    Tags: None
    #2
    That's correct; such a request doesn't make sense. The alternate site needs its own SSL so inbound https requests can reach it and be redirected without receiving an error about the certificate not matching. They need to either purchase a cert for that domain, or add something like Cloudflare to it and let them do the redirect so their mail server's web ports don't even need to be open. That would be the preferable solution and would also be free as no need for a paid plan level and the SSL is included.
    David Hubbard
    CIO
    Miva
    [email protected]
    http://www.miva.com
    • 1 like

    Comment

      #3
      More info David. I looked at Plesk for this client. I'm not sure why, but the account has DNS records for the alternate domain as an alias for the real domain. I'm assuming it's because the DNS at the registrar (Network Solutions) is only pointing to the IP address for the real domain. Then the Miva DNS is locally pointing the alias to the real domain. Couldn't the DNS at NS point the web traffic directly to the real domain name instead of Miva DNS acting as a middleman?

      Scott
      Need to offer Shipping Insurance?
      Interactive Design Solutions https://www.myids.net
      MivaMerchant Business Partner | Certified MivaMerchant Web Developer
      Competitive Rates, Custom Modules and Integrations, Store Integration
      AutoBaskets|Advanced Waitlist Integration|Ask about Shipping Insurance Integration
      My T-shirt Collection is mostly MivaCon T-shirts!!

      Comment

        #4
        That will work technically, but browsers won't behave in the intended manner because the browser will be attempting to access alternatedomain on the IP of primarydomain, find that the SSL certificate has a name which doesn't match, and error out instead of presenting the correct site or redirecting to the proper URL. The workaround is a multi-domain certificate, but that's an expensive solution to a small problem. Next option is add alternatedomain as its own site, with its own SSL, solely to accomplish the redirect, as that's cheaper using a regular SSL cert, but still has a cost. Then, some registrars often have SSL-enabled redirect support as an alternative option, which could be free,, or finally something like the free Cloudflare plan.
        David Hubbard
        CIO
        Miva
        [email protected]
        http://www.miva.com

        Comment

        Previous template Next
        Working...
        X