I have a VPS with a number of websites that share the same IP and I have
Lets Encrypt SSL on each. You can do SSL with shared IP. I do recall
back it the day having a static IP was a requirement for a cert... So
maybe that depends on who is the cert authority.
I had a conversation with a Cox support person about how to configure
multiple IPs and he was as confused as I am.
On 2021-11-18 13:45, Joe Neglia via PLUG-discuss wrote:
> I got a block of 16 static public IP's (I think it's called a CIMD /28
> or some such lingo). The uppermost and lowest addresses in the block
> have a special purpose, but that leaves 14 usable static IP's. With
> the one that I am using, there are 13 remaining ones, seemingly going
> to waste.
>
> I thought it would be convenient and simple to have a separate
> Raspberry Pi server for each site that I am hosting, each with a
> different static public IP. But couldn't figure out how to do that.
> My online research led nowhere -- knowledge in this area appears to be
> scarce. Any advice would be greatly appreciated!
>
> (Incidentally I discovered that Apache has a feature called Virtual
> Hosts that let's you host multiple websites behind one static public
> IP. Works great, except that only ONE of the sites hosted that way
> can have SSL enabled, due to the way Virtual Hosts works. This is how
> I'm currently set up.)
>
> On Thu, Nov 18, 2021 at 1:15 PM Michael Butash via PLUG-discuss
> <plug-discuss@lists.phxlinux.org> wrote:
>
>>>> I am told I can rent more static IPs... I assume I will need some
>> hardware to be able to accommodate more than 1 IP unless I am port
>> forwarding to different boxes.
>>
>> Not really, just about any *nix-y system can accommodate that with
>> NAT as a firewall/router/gateway, whatever you want to call it, with
>> one ip or many. Even basic WRT-based systems ala netgear/linksys
>> can tend to handle this in theory with basic network iptables
>> features. Probably best would be something like pfsync, which there
>> is plenty of cheap gateway hardware out there that can run it, or
>> any older (ie. cheap) enterprise firewalls.
>>
>> Old days the biggest reason for multiple ip's was SSL requiring 1:1
>> IP to DNS binding, but this has gotten easier out of necessity with
>> use of Subject Alternative Names (SAN) as part of the certs. If you
>> need the same external port being forwarded to multiple internal
>> ports/services is about the only other reason for multiple ip's, but
>> as long as you can define separate ports for what is connecting to
>> it, not so much.
>>
>> When you get to the point you want to do so, more than few of us
>> have probably done so to help you through it and understand the
>> concepts once you know what you need/want to do.
>>
>>>> Cox Business does not block any ports.
>>
>> The only residential ports they block really relevant these days is
>> 80 for http (not 443/https, so why 80??), and smtp for email, but
>> these days there is little reason to run your own smtp server unless
>> you're just doing it to do it or honeypot spammers trying to hit you
>> 24/7 for no good reasons. I'd run sslvpn for remote access on
>> https/443 just fine on res service, I just need to make sure to type
>> https://.
>>
>>>> I am satisfied with Cox Business
>>
>> CBS service is just pricey (compared to residential) to begin with,
>> unlimited bandwidth and unblocked ports or not imho, but otherwise
>> about the best/cheapest "business class" service/support you can
>> get, if you can get it in your hood.
>>
>> -mb
>>
>> On Thu, Nov 18, 2021 at 12:04 PM Keith Smith via PLUG-discuss
>> <plug-discuss@lists.phxlinux.org> wrote:
>>
>>> I've had a Cox Business account for maybe 8 years. I've only had
>>> one
>>> outage, and it was short. My package is a home office type of
>>> plan. I
>>> am currently running a LAMP + BIND + Postfix + Dovecot on a laptop
>>> on my
>>> single static IP. I am told I can rent more static IPs... I
>>> assume I
>>> will need some hardware to be able to accommodate more than 1 IP
>>> unless
>>> I am port forwarding to different boxes.
>>> I configured this server on a laptop to see if I could do it. I
>>> am a
>>> PHP dev, with some light LAMP server experience. I still have a
>>> lot to
>>> learn.
>>>
>>> Cox Business does not block any ports.
>>>
>>> Cox tells me there will never be any overages because on my plan I
>>>
>>> purchase a set up and down which cannot be exceeded.
>>>
>>> I am satisfied with Cox Business
>>>
>>> On 2021-11-14 11:21, Joe Neglia via PLUG-discuss wrote:
>>>> Any recommendations for a reliable ISP?
>>>>
>>>> (Couldn't find any recent discussion in the PLUG archives, so am
>>>> asking here.)
>>>>
>>>> I currently have a business account (I'm running a small server
>>> on a
>>>> static public IP address for my business), but am having a
>>> *terrible*
>>>> time with my current ISP. Worked *great* for about a year, but
>>> have
>>>> been having daily outages for about a month now.
>>>>
>>>> Don't even want to say the name for fear of being sued for
>>> libel. They
>>>> were honest enough to admit it is an "internal issue", and have
>>> no ETA
>>>> on a fix. "[Their] technicians continue to work to resolve the
>>>> problem in [my] neighborhood. Currently, there is no estimated
>>> time
>>>> for when service will be restored."
>>>>
>>>> I get the feeling they don't have a grasp on the problem, as
>>> when I
>>>> call their status line they report an outage even when the
>>> system is
>>>> up. When my connection goes down, a modem reboot sometimes (but
>>> not
>>>> always) gets me connected again.
>>>>
>>>> Speed is not an issue. But reliability is! Any suggestions
>>> would be
>>>> greatly appreciated.
>>>> ---------------------------------------------------
>>>> PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
>>>> To subscribe, unsubscribe, or to change your mail settings:
>>>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
>> ---------------------------------------------------
>> PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
>> To subscribe, unsubscribe, or to change your mail settings:
>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
https://lists.phxlinux.org/mailman/listinfo/plug-discuss