Hello, I been spending some time dealing with diferent problems between load balancers and ssl, so i’ve been very exited since the first anounce of wildcard support, that and the cloudflare dns plugin, reeeely made my life very very easy.
However, i’d like to present my use case, in order to sugest and expansion of the “duplicate certificate” limit, in the specific case that the duplicate limit is reached by using the wildcard feature.
Originally i’ve got the following diagram:
www.domain.com vod.domain.com edge1.domain.com / origin.domain.com \ edge2.domain.com
Due to the incresed usage, we have to upgrade our infrastructure as follow:
front1.domain.com \ www.domain.com front2.domain.com / vod1.domain.com \ vod.domain.com vod2.domain.com / edge3.domain.com / edge1.domain.com -- edge4.domain.com / source.domain.com edge5.domain.com \ / edge2.domain.com -- edge6.domain.com
Were www,and vod are now load balancers, and we have multiple load balancers routing trafic to the edge servers.
as you can see, on the vod and the front servers, we can use a simple cert pointing to the load balancers, but in the edge servers we need up to 6(in this stage) wildcards.
I’ve belive that i’m not alone in this problem, and of course we can wait for a week to get the missing wildcard, but I think that you could expand the criteria of duplicated certificates, when using wildcards, because the natural use of wildcards could archive the current limit very easily.