Hi,
I am trying to write a config that allows me to work with this setup:
I currently have one client connecting to two different services (borth port 443) on two different servers (different IPs). I would like that client to connect to the same server.
Service 1 is a mix of http and tcp, while Service 2 is pure tcp (protobuf).
The SNI is empty so I can’t use that to write my ACL route.
Is it possible to route via matched certificate?
Something like:
frontend in
bind *:443 ssl crt /link/to/service1.pem crt /link/to/service2.pem
mode tcp
acl backend1 cert matches service1.pem
acl backend2 cert matches service2.pem
use_backend tcp_backend1 if backend1
use_backend tcp_backend2 if backend2
Any help is appreciated!
2 posts - 2 participants