Ssl/iis 6.0/isa 2000

The details: So I have a server running Windows 2003 SBS. Everything worked find until we assigned the WAN side a new IP address. This has been reconfigured in ISA. We have changed our ns, mail, and A records as necessary. However, they still have not had time to propagate through the wonderful world of the internet, as the records and such wre changed over about 6 hours ago.

The issues: Have several webpages configured on IIS. Use ISA to map them to the proper WAN IP, yada yada yada. The Default website has an SSL certificate. Yes, this is the only site with SSL configured, as you can only use one SSL certificate per IP address (when things are done correctly). When accessing the website via HTTPS, error 403 is returned after the client agrees to accept the certificate. This all worked prior to the IP address change. I assume that this is because the SSL certificate is for whatever.net, and whatever.net is not responding with the IP address that the server is now configured for. I could recreate the key, but the server is not a CA. Making it a CA and going through the annoyance of creating a new SSL certificate is not an option as of yet. This is mainly because I don't have the time to do so.

Any input on this? There's nothing in the firewall configuration on ISA that states only requests for the old IP address are permitted.

 

Does this mean you still have a job?

And are you sure you have to re-create the key? Can you not go into the keystore and edit the existing one?

 

Still have a job...for now. The exchange database isn't done repairing/degragging, etc. Exchange 5.5 sucks.

But, I was right. SSL does do a reverse DNS lookup for the URL. If the site doesn't resolve to the same IP the certificate was made for (tracked by URL or NetBIOS name), the SSH certificate is invalid. It's unforunate that I figured this at 5:30pm; but since I was only 99% sure my "superior" insisted on researching it until 7pm, and got no where. Grr....