Try adding the "sni" setting to the entry in Xymon's hosts.cfg - by default Xymon doesn't send the SNI SSL parameter.

(Yes, this should be the default by now).

Regards, Henrik

Den 19.04.2020 kl. 11.08 skrev FreeSoftwareServers:

I have a server which has both NGinX and Apache2 serving multiple sites. I have ?main? domain freesoftwareservers.com and a wildcard cert which is set ?globally? with NGinX.

Eg:

In my freesoftwareservers.conf

##GLOBAL SSL

ssl_certificate /etc/ssl/personal/fsws/fsws.crt;

ssl_certificate_key /etc/ssl/personal/fsws/fsws.key;

server {

}

But I have another domain using LetsEncrypt and its setup like so (note, all my apache sites are served via nginx redirect to apache):

server {

?? listen?????????????? 443 ssl;

?? server_name????????? domain.tld;

?? ssl on;

?? ssl_certificate /etc/letsencrypt/live/ domain.tld /cert.pem;

?? ssl_certificate_key /etc/letsencrypt/live/ domain.tld /privkey.pem;

}

But xymon is only using my wildcard cert for both domains. Is there something setup incorrectly in my setup or a fix for XYMon I can use? Using latest w/ Ubuntu so 4.28.

Thanks!

---

Xymon mailing list Xymon at xymon.com http://lists.xymon.com/mailman/listinfo/xymon