Products
- Infrastructure
  - Cloud Infrastructure
    Everything needed to create and manage cloud infrastructure: virtual machines and clusters, networks, data storage, load balancers.
  - Public Cloud
    A flexible and scalable cloud infrastructure: virtual servers, data storage, network virtualization, and many more.
  - Private Cloud
    A cloud cluster with full control: customize resources, manage virtualization, and scale according to tasks.
  - Hybrid Cloud
    Combining internal physical IT infrastructure with powerful cloud resources.
- Servers and Computing
  - Virtual Machines
    High-performance and highly available VPS/VDS with automatic installation and full root access to the OS. The ordered resources are guaranteed to be reserved for you.
  - Dedicated Servers
    Ready-to-use configurations of physical servers with fast deployment time and component replacement within 24 hours. Internet from 15 TB.
  - Cloud Servers
    Versatile and scalable virtual server environments designed to grow with your business needs, offering flexible resource allocation.
- Networking
  - Virtual Networks
    A suite of networking services offering enhanced security, scalability, and high resource availability to streamline your cloud ecosystem.
  - Cloud Firewall
    Protecting cloud resources – create access rules and evenly distribute traffic for the stable operation of your applications.
  - Load Balancer
    Evenly distributing traffic between virtual servers, ensuring high availability and performance of the cloud infrastructure.
  - IP Leasing
    An expansive IP marketplace that provides a robust foundation for business scalability and continuity.
  - Floating IP
    Easily reassignable IP addresses that ensure service continuity and high availability for critical applications.
- Cloud Storage
  - Object Storage
    Scalable, flexible, and easily managed object storage. Unlimited volume for various types of data and tasks.
  - Cloud Data Storage
    Network storage supports a wide range of protocols, including FTP/SFTP, NFS, CIFS/Samba, iSCSI, SFTP, SSH (SCP), WebDAV, RSYNC.
- Containers
  - Kubernetes
    An orchestration system for automating the deployment, scaling, and management of containerized applications
  - Container Registry
    A secure service for storing, managing, and deploying your container images, streamlining your DevOps workflows.
- Managed databases
  - MongoDB
    A high-performance, NoSQL database perfect for managing large-scale data in a flexible and efficient manner.
  - Elasticsearch
    A powerful search and analytics engine designed for high-volume data indexing and real-time querying.
  - PostgreSQL
    An advanced open-source relational database with a strong reputation for reliability, feature robustness, and performance.
  - Greenplum
    A massively parallel processing (MPP) database platform for large-scale data warehousing and analytics.
  - MySQL
    The world's most popular open-source database, known for its reliability, simplicity, and speed.
  - Redis
    An in-memory data structure store used as a database, cache, and message broker for high-speed data handling.
  - Apache Kafka
    A distributed streaming platform that enables you to build real-time data pipelines and streaming applications.
  - ClickHouse
    A column-oriented database management system optimized for online analytical processing (OLAP).
  - OpenSearch
    A community-driven, open-source search and analytics suite used for a broad set of use cases, like real-time application monitoring and log analytics.
- Security
  - DDoS Protection
    Neutralizing DDoS attacks at all OSI levels up to L7 while maintaining the productivity of web resources with Qurator and DDOS Guard.
  - DRaaS
    Fortify your operational continuity with our resilient disaster recovery solutions, ensuring swift recovery and minimal downtime in the face of unforeseen challenges.
Community
- Community Digest
  Highlights and insights from blogs, news, and Q&As in IT and cloud tech
- News
  Latest news from the world of IT and cloud technologies
- Blog
  Weekdays of IT specialists, talking about the activities of our company
- Q&A
  Use the convenient search for an answer to a question or ask it yourself
Documentations
Referral program
Trial Server

Peerobyte / Community / Questions & Answers / Why is my SSL certificate not working for my IP address in Apache?

Why is my SSL certificate not working for my IP address in Apache?

I have a website running on Apache, and I’m trying to set up an SSL certificate for it. When I visit https://192.168.1.1 in Firefox, I get the following error:

Websites prove their identity via certificates. Firefox does not trust this site because it uses a certificate that is not valid for 192.168.1.1. The certificate is only valid for 192.168.1.1.

Error code: SSL_ERROR_BAD_CERT_DOMAIN

I created a certificate for the IP address 192.168.1.1 using OpenSSL with the following configuration file:

		
			
		
		[req]
distinguished_name = req_distinguished_name
x509_extensions = v3_req
prompt = no
[req_distinguished_name]
C = US
ST = NY
L = New York
O = Example
OU = IT
CN = 192.168.1.1
[v3_req]
keyUsage = critical, digitalSignature, keyAgreement
extendedKeyUsage = serverAuth
subjectAltName = @alt_names
[alt_names]
DNS.1 = 192.168.1.1

I configured Apache to use this certificate. However, when I try to access the site via the IP address in the browser, Firefox does not trust the certificate. What am I doing wrong?

Answers

Even with the correct IP.1 setting, the browser will only trust the certificate because you manually added the root certificate on your device. Typically, SSL certificates are issued for domain names, not IP addresses, so other devices may not automatically trust certificates for IP addresses, even if correctly configured in subjectAltName. Such a certificate will not be "fully trusted" on other devices unless they are configured similarly to yours.

The issue is that for IP addresses, you need to specify them in the subjectAltName section as an IP, not as a DNS. Here’s the corrected configuration:

		
			
		
		[alt_names]
IP.1 = 192.168.1.1

For an IP address, the certificate must reference it as IP.1 instead of DNS.1. This should resolve the browser error you're seeing.