<div dir="ltr">It sounds right.<div><br></div><div>According to the same situation, how does http2 protocol force other </div><div>virtual servers to process certificate (ssl handshake).</div><div><br></div><div>Example:</div><div><br></div><div>server {</div><div> listen 443 http2;</div><div> <a href="http://a.com">a.com</a>;</div><div> ssl_certi....;<br></div><div>}</div><div><br></div><div><div>server {</div><div> listen 443 http2;</div><div> <a href="http://b.com">b.com</a>;</div><div> ssl_certi....;<br></div><div>}</div></div><div><br></div><div>We assume sni is '<a href="http://a.com">a.com</a>', then the connection contains different requests with different domains.</div><div>That <a href="http://b.com">b.com</a> will escape from ssl handshake. In fact, we need it to do the ssl handshake.</div><div><br></div><div>Thanks.</div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Jun 8, 2017 at 10:17 PM, Valentin V. Bartenev <span dir="ltr"><<a href="mailto:vbart@nginx.com" target="_blank">vbart@nginx.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">On Thursday 08 June 2017 12:07:29 洪志道 wrote:<br>
> Hi!<br>
> Now, http2 is enabled globally for 'listen' directive with ip:port.<br>
> It seems it's possible to enable by server with sni, alpn, npn.<br>
> Take a look, please.<br>
><br>
</span>[..]<br>
<br>
How will "sni, alpn, npn" prevent browser from asking other virtual<br>
servers using already opened HTTP/2 connection?<br>
<br>
wbr, Valentin V. Bartenev<br>
<br>
______________________________<wbr>_________________<br>
nginx-devel mailing list<br>
<a href="mailto:nginx-devel@nginx.org">nginx-devel@nginx.org</a><br>
<a href="http://mailman.nginx.org/mailman/listinfo/nginx-devel" rel="noreferrer" target="_blank">http://mailman.nginx.org/<wbr>mailman/listinfo/nginx-devel</a></blockquote></div><br></div>