Renewing the SSL Certificate on a Network Load Balanced system#

We had a problem last night as we attempted to update our site certificate on our NLB website.

We have 2 machines in the cluster, and after updating the certificate on both of them, the site stopped responding over https.

We spent a LOT of time trying to figure out what was wrong with our new certificate, or the way we had set it up.

In the end, it turned out that that when we updated the certificate, it AUTOMATICALLY removed the NLB IP address from the IPs that are listening for port 443. 

So the result was that each server would respond over SSL on it's own, but when you tried to access the cluster by it's IP address over SSL, there would be no response.

It was really easy to fix, but a real pain to find. 

Categories:  |  | 
Tuesday, March 20, 2007 1:04:17 PM (Central Standard Time, UTC-06:00) #    Comments [0]  | 

 

Name
E-mail
(will show your gravatar icon)
Home page

Comment (HTML not allowed)  

Enter the code shown (prevents robots):
All content © 2008, Christopher May, Inc
Open Job Positions
On this page
Google Ads
This site
Syndicate
Calendar
<March 2007>
SunMonTueWedThuFriSat
25262728123
45678910
11121314151617
18192021222324
25262728293031
1234567
Archives
 Full Archives By Category
December, 2008 (1)
November, 2008 (3)
October, 2008 (11)
September, 2008 (5)
August, 2008 (1)
July, 2008 (15)
June, 2008 (14)
May, 2008 (2)
April, 2008 (6)
March, 2008 (12)
February, 2008 (7)
January, 2008 (10)
December, 2007 (2)
November, 2007 (13)
October, 2007 (10)
September, 2007 (6)
August, 2007 (4)
July, 2007 (12)
June, 2007 (25)
May, 2007 (19)
April, 2007 (14)
March, 2007 (18)
February, 2007 (18)
January, 2007 (20)
December, 2006 (18)
November, 2006 (22)
October, 2006 (12)
September, 2006 (16)
August, 2006 (15)
July, 2006 (13)
June, 2006 (8)
May, 2006 (18)
April, 2006 (53)
March, 2006 (13)
December, 2005 (5)
October, 2005 (1)
September, 2005 (23)
August, 2005 (20)
July, 2005 (18)
June, 2005 (19)
May, 2005 (15)
April, 2005 (32)
March, 2005 (22)
February, 2005 (6)
January, 2005 (12)
December, 2004 (13)
November, 2004 (6)
September, 2004 (3)
August, 2004 (4)
July, 2004 (10)
June, 2004 (10)
May, 2004 (29)
April, 2004 (20)
March, 2004 (16)
February, 2004 (10)
January, 2004 (20)
December, 2003 (20)
November, 2003 (12)
October, 2003 (17)
September, 2003 (35)
August, 2003 (17)
July, 2003 (32)
June, 2003 (27)
May, 2003 (14)
Sitemap
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Blogroll OPML
 Brad Abrams
 Clemens Vasters
 Don Box
 Harry Pierson
 Joshua Flanagan
 Omar Shahine
 Rob Howard
 Rocky Lhotka
 Scott Gu
 Scott Hanselman
 Tom Mertens
Disclaimer

Powered by: newtelligence dasBlog 1.9.6264.0

The opinions expressed herein are my own personal opinions and do not represent my employer's view in any way.

Send mail to the author(s) E-mail

Theme design by Jelle Druyts


Pick a theme: