Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SNI Best Practice

Discussion in 'Security' started by enigmait, Jul 6, 2016.

Tags:
  1. enigmait

    enigmait Registered

    Joined:
    Feb 1, 2012
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    51
    cPanel Access Level:
    Root Administrator
    Hi,

    Is there a best practice for SNI?

    i.e my main server is hosted on ip 1.1.1.1 (not my real IP) and uses SSL to host the cpanel interfaces.

    Shall I use a separate IP to host all the SNI websites that need certificates i.e 2.2.2.2 or put it all to the primary ip of 1.1.1.1?
     
    #1 enigmait, Jul 6, 2016
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,802
    Likes Received:
    1,714
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Here's a brief overview from our SSL FAQ document that explains how SNI support works:

    You can use the same IP address for multiple SSL certificates. The main caveat most people notice with SNI is that SSL becomes accessible for all domain names on the IP address, even if no SSL certificate is installed for the domain name:

    My certificate installed, but visitors who try to securely access other sites on the shared IP address can only see the site with an installed SSL certificate, not my default domain.

    Thank you.
     
    #2 cPanelMichael, Jul 8, 2016
(You must log in or sign up to post here.)
Loading...
Similar Threads - Best Practice
  1. spiderlinginc

    Create subdomains best practice?

    spiderlinginc, Jan 19, 2018, in forum: Bind / DNS / Nameserver Issues
    Replies:
    1
    Views:
    264
    cPanelMichael
    Jan 19, 2018
  2. verdon

    Best Practice for Second Server Configuration

    verdon, Sep 21, 2017, in forum: General Discussion
    Replies:
    6
    Views:
    381
    verdon
    Sep 22, 2017
  3. sktest123

    Best practices incoming spam vs outgoing spam

    sktest123, Mar 13, 2017, in forum: E-mail Discussions
    Replies:
    1
    Views:
    659
    cPanelMichael
    Mar 13, 2017
  4. WorkinOnIt

    Kernel Update Best Practices

    WorkinOnIt, Mar 13, 2017, in forum: Data Protection
    Replies:
    2
    Views:
    942
    Pankaj K
    Mar 13, 2017
  5. zackw

    Using su/sudo, best practices?

    zackw, Dec 23, 2016, in forum: Security
    Replies:
    3
    Views:
    768
    cPanelMichael
    Jan 20, 2017

Share This Page