Clik here to view.
Http redirect https + WebSocket + send clientIP
Hello! I’ve faced with problem when tried to convert NGINX-configure to haproxy 2.3. The task is to redirect client from http:80 to https:443 and after success login switch HTTP to WebSocket. Also I...
View ArticleCannot restrict traffic, how to http-request deny allow !path || !path2...
haproxy version: 2.2.7 I can restrict accessing to selected /path only, but how to also allow access to /somepath from specific network besides that? Config example: acl network_allowed src 1.2.3.4/10...
View ArticleHelp needed redirrect https Exclude one Client
Hi, im new to haproxy with maybe someone can help me, I have a redirect to https for all my sites in the front end but i need to make an exception to one client in a particular site I was trying this:...
View ArticleWhich one of these configurations is good?
Hello, I want to launch an HAProxy for below infrastructure: HAProxy Server : 192.168.56.7 Apache Server 1 : 192.168.56.8 Apache Server 2 : 192.168.56.9 Which configuration is better? Configuration...
View ArticleClik here to view.
Do-resolve not working
Hello everyone, I have an issue where I configured resolvers and have this line in my configuration: tcp-request content do-resolve(sess.dstIP,mydns,ipv4) ssl_fc_sni and it doesn’t work, in the logs...
View ArticleHAProxy, OPNsense and a blocked port 443
Would greatly appreciate some additional pairs of eyes. I have HAProxy set up on OPNsense, been trying to translate guides from pfsense to opnsense, but I’ve been running into multiple issues. HAProxy...
View ArticleHaproxy redirect a part of URL's path to another URL
I want to redirect https://example.com/PATH to https://example.com/ords/test/portal/test_ppp_id=PATH&lang=en I need “PATH” to be in redirection as id. 1 post - 1 participant Read full topic
View ArticleRetry request on a different backend after initial backend returns 501 status?
Hi, We run HAProxy in front of a custom Ruby application. We’re in the middle of a major version upgrade on that custom Ruby app, and we’d like to start using it for some of our traffic in parallel...
View ArticleAWS SMTP / Azure SMTP for mailers configuration
Hello Team, I was trying to use AWS SMTP / Azure SMTP credentials for the mailer in HAProxyto alert. I couldn’t find any resources which helps me with this. Could anyone of you please help with this....
View ArticleDefault route for local address, squid for non-local
Hi, Maybe this question is pretty simple, but I could not find anyone with a similar problem. Basically what I would need is HAProxy routing traffic depending on the destination. That is, if the...
View ArticleHaproxy sometimes sends SSL Handshake Errors
I observe SSL Handshake failures in my Haproxy logs. Sometimes this occurs when the web application is trying to save data or is receiving a larger post and it causes the web application to throw an...
View ArticleHAProxy Unable to configure client certs for mTLS Backend app
Hello everyone, I am doing HA Proxy setup, where our back-end application is configured for mTLS. I am having client certificates and key required for mTLS authentication with back-end application...
View ArticleHaproxy 2.4 dev17 does not have server attribute in resolvers section
We want to use dns discover for more than 1000 backends, using udp resolver takes a lot of cpu. I tried the 2.4dev12 branch and the server key in resolver section solves most of the issue, but same...
View ArticleClik here to view.
Haproxy 2.0.2x, HTTP/2 sends only a small amount of data when it receives an...
We are using version 2.0.20 of HAProxy. Option “no option http-use-htx” is being used for legacy http support. On the backend server, the response of the content uses HTTP/1.1 “Transfer-Encoding:...
View ArticleHA-Proxy version 1.8.24 2020/02/15 not send access log to /dev/log
journalctl -f -u haproxy -- Logs begin at Пн 2021-04-26 21:01:39 MSK. -- апр 27 13:00:15 node02.local haproxy[10715]: Proxy 1-OUT started. апр 27 13:00:15 node02.local haproxy[10715]: Proxy 2-OUT...
View ArticleHow to: AWS SMTP / Azure SMTP for mailers configuration
Hello Community, I have gone through the configuration samples and help topics to find if there is a way to use third party smtp credentials in HAProxy to generate alert. However I ended up being...
View ArticleUse a SOCKS5 Backend
The current traffic flow looks like this: Browser -> HAProxy --> SOCAT --> SOCKS5 Tunnel --> Remote HTTP Server I would like to know if it’s possible to remove socat and have HA Proxy...
View ArticleBackend private connection for variable TLS SNI in 2.2
Hello! Do you have any plans to backport ‘private backend connection’ from HA2.3 to HA2.2? I mean that option in 2.3 config guide - connections sent to a server with a variable value as TLS SNI...
View ArticleDo we have data loss when output destination is not available to receive data...
Hi All, I am new to haproxy usage, i wanted to check one thing here. In the below architecture, When output servers (in my case it is SIEM) are down and not able to receive any logs which are sent by...
View ArticleWrite haproxy frontend and backend logs to local log files in linux server
Hi All, I started working on haproxy while i am having doubt on how to write the haproxy frontend and backend logs into a local log files to know what logs are being sent through haproxy. Can someone...
View Article