CF-Connecting-IP
Hello guys. I have an HAproxy in pfsense working with several front-end. Everything working. I also have SSL running on Cloudflare. there was a need to limit a frontend to some specific ips. As I...
View ArticleHow To Enable HTTP/3 (QUIC) in HAProxy
Hello, I’d like to know how to enable HTTP/3 (QUIC) in HAProxy. I can’t find any data related to this anywhere. I already downloaded the latest HAProxy source (v2.4-dev5) and built it with USE_QUIC=1....
View ArticleGrowing IP ACL file
We have been using HAProxy to block unwanted IP addresses for the past few months. I’m concerned that if this file keeps on growing, it might impact the overall performance of HAProxy not to mention...
View ArticleRouting problems with multiple domains and tcp/http frontends
Hi, i use Haproxy 2.0.19 and local letsencrypt plugin at Opnsense Firewall which runs at FreeBsd. My setup: one backend at cloud.mydomain.com for which i need to use ssl termination with local...
View ArticleSanity check on my haproxy.conf file as a reverse proxy for Hugo
Hello, I’m currently learning some new stuff like building a simple website using Hugo and encrypting it with a Let’s Encrypt certificate. Unfortunately Hugo doesn’t have native support for SSL so I...
View Article1.8.x - 2.2.x upgrade kills client certificate authentication from a hardware...
I experience a weird problem. I have been using haproxy 1.8.x and then upgraded to 2.2.5 on Debian Buster. I had a working client cert authentication that is used both with browser and hardware token...
View ArticleAdd httponly and secure cookie if not present
Hi all I’d like to add Secure and HttpOnly to all cookies, when these securities are not already set by backend app, but I can’t find the way to do this properly. Add is OK, but on cookies which have...
View ArticleFacing a weird delay in responses HaProxy | Apache | Docker Container
I am facing significant delays in some specific cases of the requests between servers. Below is the architecture which I am following. Server A & Server B Configuration: Public Traffic received at...
View ArticleSource IP list, Static HTML
Right now, when we have abusers, we have a script that blackholes their IP for some period of time… similar to fail2ban. We figure that there is a “nicer” way to address this. There is probably a...
View ArticleExtremely Large HTTP Responses with Chunked Encoding Blocked
I’m trying to figure out why haproxy is blocking server responses with the “PH” flag. The responses are VERY large, we’re talking 3-5GB responses. This particular response is 3633514102 bytes (3.4GB)....
View ArticleClik here to view.
Websockets - 1006 Random Disconnect
I’m running a .Net 5 application using SignalR for websockets with a Vue JS app. Recently, my client seems to continually disconnect randomly. I am able to reproduce the issue more consistently by...
View ArticleHow to use HAProxy as LDAP -> LDAPS forward proxy
I have a collection of smallish internal-facing apps sitting on a server. I have been asked to ‘secure’ these apps. The apps currently: provide HTTP service to clients make use of a number of internal...
View ArticleUse HAProxy to different FTPS servers
I am running a datacenter for different customers and use HAProxy to different servers based on the domain they connect with. This works really great. Now I want to extend this to allow our customers...
View ArticleProblems compiling 2.2.8 on CENTOS 7
I have installed lua-5.3.5 from source in /opt/lua-5.3.5. Previously I was able to compile haproxy 2.0.15 with this config, but 2.2.8 is giving me the following errors: LD haproxy /bin/ld:...
View ArticleGetting logs from a kubernetes container
Hi, I’m struggling to get access and health check logs from haproxy when I run it inside a container, so I’ve followed the instructions in the docs (Setting up logs using Docker | HAProxy Enterprise...
View ArticleClik here to view.
Server-template limitations, is tcp supported?
I wasn’t able to specifically get this information from docs & didn’t find any specific section here: HAProxy version 2.3.3 - Configuration Manual Is there a limit on the total number of hosts we...
View ArticleUpdating logs while socket is open
Hi there, I would like to know if it is possible to update the logs while the socket is open. Currently the logs are updated only after closing the socket, which causes issues. We have already tried...
View ArticleTroubleshooting dropped TCP / metrics
I have a loadbalancer (two via keepalived/VIP for failover) running HAProxy 2.0.13 on Ubuntu Server 20.04. It’s running TCP mode to proxy API requests back to a round-robin of Windows/IIS ASP.NET...
View ArticleHow can I set for verbose logging for SSL Handshake failures
Hi, This is regarding that can we get the client host name and certificate details used in the case of ‘SSL handshake failure’ exception by any sorts of error logging customization in haproxy config....
View ArticleFailed to start HAProxy Load Balancer - openshift
I appreciate your help here. new to the forum and haproxy. I’m getting a Failed to start HAProxy Load Balancer when restarting the haprocy services. this is my config defaults mode http log global...
View Article