@Yogui wrote:

I have a problem … like everyone who writes here.

I would like to redirect all ports 80,8000,443,8001,12307,12308,808,2195,1433

persistently between one of the three servers and the client.
without port forwarding

my configuration

global
log /dev/log local0
log /dev/log local1 notice
chroot /var/lib/haproxy
stats socket /run/haproxy/admin.sock mode 660 level admin
stats timeout 30s
user haproxy
group haproxy
daemon

Default SSL material locations

ca-base /etc/ssl/certs
crt-base /etc/ssl/private

Default ciphers to use on SSL-enabled listening sockets.

For more information, see ciphers(1SSL). This list is from:

https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/

ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!D$
ssl-default-bind-options no-sslv3

defaults
log global

mode http

option httplog

option tcplog
timeout client 1h
listen toto-va
bind *:80
bind *:443
bind *:8000
bind *:8001
bind *:2195
bind *:12307
bind *:12308
bind *:1433
bind *:4242

mode tcp
balance source
option httpchk
server toto-VA-Web1 127.0.0.185 check
server toto-VA-Web2 127.0.0.186 check
server toto-VA-Web3 127.0.0.187 check

listen stats # Define a listen section called “stats”
bind :9000 # Listen on localhost:9000
mode http
stats enable # Enable stats page
stats hide-version # Hide HAProxy version
stats realm Haproxy\ Statistics # Title text for popup window
stats uri /haproxy_stats # Stats URI
#stats auth root:pwd # Authentication credentials

Posts: 1

Participants: 1

Read full topic