Multiple SSL Sites - One NIC

[Modeverything]

First of all, I'm not much of an IIS guru. I am having trouble with a Windows 2003 web server that has one NIC, two websites that require SSL, with two ip addresses assigned to this interface; one ip for each site. This server is not setup in a DMZ, it is in a separate network from the main network with a firewall that is a allowing port 80 and 443 to both of its ip addresses. The first site that is setup works fine, but the second, newly created site is the one having the trouble.

Connecting to the site using http using DNS works with no problems, from many different networks except the local network to the server. Connecting to the site using http with the ip address on the local network does work.

Connecting to the site using https fails everytime.

DNS is being passed from our ISP to our own DNS server that is behind a firewall on a DMZ, which references the other firewall that the web server sits behind, and the traffic is translated through the firewall to the ip address cooresponding to the appropriate web site.

I used Ethereal to capture packets going to the web server and they are successfully getting there, but the connection just basically drops very quickly.

I'm not sure if SSL can use multiple ip addresses to one NIC. Does anyone have any suggestions?

Thanks for any input!

 

[Modeverything]

Just another point is that we have now discovered that we are able to connect to the site over https if we turn off SSL 3.0 in IE, however we get a certificate warning and since we purchased an SSL 3.0 certificate, the browser is unable to verify the certificate's validity.

Any feedback on possibilities are appreciated.

Thanks for any input!

 

[Modeverything]

Well, we have fixed the problem. The issue was caused by a broken certificate chain, although it showed as valid something was just hosed up. We got a new cert and then everything worked.

Issue Resolved!