Hello,
i am wondering if it’s possible to have FE/BK like as routing TCP/HTTP but i would like to choose FE based ACL.i explain:
request to https://machine.dom.org/myapp
FE1HTTPS
bind *:443 ssl crt /etc/haproxy/certs/haproxy.pem crt-ignore-err all ca-ignore-err all
mode http
log-format inFE1\ https://%[capture.req.hdr(0)]%%[capture.req.uri]
acl acl_begPath_myapp path_beg -i /myapp
use_backend redirect_for_https if acl_begPath_myapp
FE2HTTPS
bind 127.0.0.1:4443 accept-proxy ssl crt /etc/haproxy/certs/haproxy.pem crt-ignore-err all ca-ignore-err all
mode http
log-format inFE2\ https://%[capture.req.hdr(0)]%%[capture.req.uri]
http-request deny unless { req.hdr(authorization) -m found }
backend redirect_for_https
mode http
server loopback-for-tls-https 127.0.0.1:4443 send-proxy-v2 verify none sni ssl_fc_sni
i want to proxy HTTPS to HTTPS but it’s not working
but the request pass in FE1 but not in FE2
An idea ?
1 post - 1 participant