Apache SNI拿错了证书_Apache_Certificate_Sni

Apache SNI拿错了证书

apache certificate

Apache SNI拿错了证书,apache,certificate,sni,Apache,Certificate,Sni,我得到了以下设置 Listen 443 NameVirtualHost *:443 <virtualhost *:443> Servername 1.domain.com DocumentRoot /1 SSLEngine on SSLVerifyClient none SSLCertificateFile /etc/apache/1.cer SSLCertificateKeyFile /etc/apache/1.key

我得到了以下设置

Listen 443
NameVirtualHost *:443
    <virtualhost *:443>
    Servername  1.domain.com
    DocumentRoot /1
    SSLEngine on
    SSLVerifyClient none
    SSLCertificateFile /etc/apache/1.cer
    SSLCertificateKeyFile /etc/apache/1.key
    SSLCertificateChainFile /etc/apache/1.crt
    </virtualhost>

    <virtualhost *:443>
    Servername  2.domain.com
    DocumentRoot /2
    SSLEngine on
    SSLVerifyClient none
    SSLCertificateFile /etc/apache/2.cer
    SSLCertificateKeyFile /etc/apache/2.key
    SSLCertificateChainFile /etc/apache/2.crt
    </virtualhost>

听443
名称虚拟主机*：443
Servername 1.domain.com
DocumentRoot/1
斯伦金安
SSLVERIFYCLENT无
SSLCertificateFile/etc/apache/1.cer
SSLCertificateKeyFile/etc/apache/1.key
SSLCertificateChainFile/etc/apache/1.crt
Servername 2.domain.com
DocumentRoot/2
斯伦金安
SSLVERIFYCLENT无
SSLCertificateFile/etc/apache/2.cer
SSLCertificateKeyFile/etc/apache/2.key
SSLCertificateChainFile/etc/apache/2.crt

出于某些原因，SNI从网站2上的1.domain.com获取证书，导致连接不安全警告页面。有人知道为什么吗？我正在使用apache/2.2.15（Unix）

OpenSSL 1.0.1e-fips

我已经设法让它工作，显然apache要求名称virtualhost位于/etc/httpd/conf.d/ssl.conf文件中，而不是httpd.conf文件中