I have a somewhat complicated environment as follows:
Multiple DNS names (capers.captools.us, capersqm.dnsalias.net, capersqm1.dnsalias.net, jrlnet.dnsalias.net) all point to the same public IP address, which is dynamic (kept up to date with inadyn). I have two servers (main and backup), and switching is done by port numbers. Normally ports 80 and 443 point to the Apache2 webserver on the main (duplicated with 7801 and 7443), while the backup uses 7800 and 7440. Unfortunately, the main suffered a meltdown, so 80 and 443 were switched to forward to the backup. The SSL certs on the backup work,but I can’t get certs on the main.
There is also a server under construction called capersqm3 (ports 7803 and 7443) but it is turned off while I troubleshoot the cert problem with the main.
Easy question: can I simply copy all the relevant pieces and settings from the backup to the main since all the names match up? (Relevant files and lines in files affected are or are within /etc/sysconfig/apache2, /root/.getssl and /etc/apache2.)
Harder question: how should I craft /root/.getssl/getssl, /root/getssl/jrlnet.dnsalias.net/getssl and/or /usr/local/bin/getssl to achieve the same state of bliss on the main?