Service Unavailable

Server unavailable
Hello,

I have a domain and subdomains.
My different servers have a private IP address and HAProxy has a public IP address.

I have put at my registrar the public address of my subdomain.

I configured HAProxy in ssl in Wildcard with Let’s Encryt .
When I try to go on my internet browser and put my subdomain I get a 503 error Service Unavailable.

I am a beginner in HAProxy, I am attaching my configuration.

global
        maxconn 2048
        #log /dev/log    local0
        #log /dev/log    local1 notice
        log 172.28.26.15:514 local0 info
        chroot /var/lib/haproxy
        stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd listeners
        stats timeout 30s
        user haproxy
        group haproxy
        daemon
# Default SSL material locations
        ca-base /etc/ssl/certs
        crt-base /etc/ssl/private

        ssl-server-verify none
        tune.ssl.default-dh-param 2048

# intermediate configuration, tweak to your needs

        ssl-default-server-ciphers CDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:EC$
        ssl-default-server-options no-sslv3 no-tlsv10 no-tlsv11 no-tls-tickets


# curl https://ssl-config.mozilla.org/ffdhe2048.txt > /path/to/dhparam.pem
    ssl-dh-param-file /etc/haproxy/dhparam.pem
defaults
        log     global
# Nous travaillons sur le flux http
        mode    http
        option  httplog
        option  dontlognull
# On ferme la connexion après la réponse au client
        option httpclose
# Délais de réponse client - serveur
        timeout connect 5000
        timeout client  50000
        timeout server  50000
        errorfile 400 /etc/haproxy/errors/400.http
        errorfile 403 /etc/haproxy/errors/403.http
        errorfile 408 /etc/haproxy/errors/408.http
        errorfile 500 /etc/haproxy/errors/500.http
        errorfile 502 /etc/haproxy/errors/502.http
        errorfile 503 /etc/haproxy/errors/503.http
        errorfile 504 /etc/haproxy/errors/504.http
frontend https-in
        bind :80 v4v6
        bind :443 v4v6 ssl crt-list /etc/ssl/crt-list alpn h2,http/1.1
        acl ACL_cas_univ-bfc_fr hdr_dom(Host) -i cas.univ-bfc.fr
        acl ACL_formation.univ_bfc.fr hdr_dom(host) -i formation.univ-bfc.fr
        http-request set-header X-Forwarded-Host %[req.hdr(Host)]
        http-request set-header X-Forwarded-Proto http
        http-request set-header X-Forwarded-Proto https
        #redirect scheme https code 301 if !{ ssl_fc }
        use_backend formation.univ_bfc.fr if ACL_formation.univ_bfc.fr
        use_backend cas.univ-bfc.fr if ACL_cas_univ-bfc_fr
        default_backend poubelle

frontend myapp_front
        bind *:80
        log 127.0.0.1 local0 info
        mode http
        default_backend pool_load
backend pool_load
        mode http
        server log 172.28.26.15:8888
backend formation.univ_bfc.fr
        server formation.univ-bfc.fr 172.28.26.14:443 ssl verify none check

However the site is reachable directly with its IP address.
Can you help me?
Thanks
Sincerely

1 post - 1 participant

Read full topic