Logging to syslog - wrong hostname in /var/log/messages
I’ve successfully set up haproxy to log to the local syslog server, into file /var/log/messages. However, I noticed that the logs do contain a hostname that is not identical with the one the machine...
View ArticleAws s3 behind HAproxy SignatureDoesNotMatch
Hi Team, I have an issue when my serverver try to communicate with aws s3 strorage using aws cli, I have HAproxy as reverse proxy to aws s3 backend, here is the command output: aws --endpoint-url...
View ArticleAlways 404 when proxying firestore (HTTP2)
I’ve been having a hard time trying to debug this issue. We’re trying to set up an proxy that will essentially serve up firebase inside our own domain to get around some customer content blocking. I...
View ArticleMulti Wildcard SSL Certificat Not Working
I have been using HAProxy for many years and, to date, all of our applications have used either regular HTTP or SSL Passthrough. Now, however, our application development (AD) group is migrating their...
View ArticleClik here to view.
How do i do this in ha proxy
Hello Team I have (bsvmvizpds1, bsvmvizpds2) 2 hosts. I want to access them via ha proxy. The company providing the software (Vizrt ghub Rest) suggested squid. sample config shared . how do i write...
View ArticleSNI based rule - two application behind one port
Hello all, I have a requirement to run two different applications on a host behind port 443. When requesting the FQDN of the system, the request needs to be forwarded unchanged to another port. On the...
View ArticleAutomatic failover without disrupting visitors
Hello I’m very new to haproxy and having to learn on the fly because there was an urgent need to switch from nginx to haproxy (because nginx wouldn’t allow Host to be changed based on upstream...
View ArticleNeed help with a unique setup
Hello haproxy experts Im setting up the below system and need help client [https]=============haproxy============[https]Server My configuration is as below. When I curl from client with http, it works...
View ArticleSeeing 100% CPU on random times, stability issues
Hello Haproxy users, We have been seeing our 20 or so HAproxy nodes spike up to 99% CPU on the cluster at random times which is causing our site to stop taking traffic for about 10 minutes of time and...
View ArticleCan I skip dealing with certificates?
I’m trying to setup haproxy on one server to connect to ocserv vpn on another server. The problem is the ssl handshake between the two servers. Can I just not deal with ssl? I couldn’t make it work. I...
View ArticleSSL Handshake failure on ssh
Trying to add specific routing depending on SSH destination fails. My haproxy.cfg looks like this: global log /dev/log local0 info log /dev/log local1 info chroot /var/lib/haproxy user haproxy group...
View ArticleDon't use SSL for default backend(?)
The situation is the following: HAProxy runs very nicely (amazing piece of software btw. thanks!) for a couple of months already on a load-balancer which has a wildcard DNS entry, let’s say *.foo.org....
View ArticlePath matching not working
Hi, I Tried to add path_beg in the frontend, It ran okay. When tried to add other path matching in the frontend, they didn’t work. Here is the sample URL:...
View ArticleClik here to view.
Haproxy reload behaviour
Hello everyone, Hopefully you guys can provide some feedback on this behaviour. Setup: Haproxy running version 2.3 (I know a bit old-ish). 200+ Frontends (its a chonky boy) 500+ Backends Regular...
View ArticleSuddenly L4TOUT everywhere
(topic deleted by author) 1 post - 1 participant Read full topic
View ArticleChange Proxy-Protocol Client IP
Hi, To give the context, I have an HAProxy instance behind multiple Cloudflare domains (with ACLs etc…) I want the final servers to have the Real Client IP Without anything the final server get...
View ArticleHAProxy with multiple backends without conditions
I would like to use HAProxy to forward an inbound request to two servers, an old one and a new one, depending on which one is up and running, or randomly if both of them are up. If the request hits...
View ArticleHow to append new ip address to ACL whitelist file?
I was using the following url from the DataPlaneApi to add a new entry to my whitelist(ACL) file: http://localhost:5555/v2/services/haproxy/runtime/acl_file_entries The problem is that this doesn’t...
View ArticleLua packages not working with Haproxy
Hi folks, I’m new to Lua. Trying to use a Lua script in integration with Haproxy. We are trying to create a setup in which we want to conduct authorization of an incoming request at haproxy level...
View ArticleClik here to view.
Match against req.ssl_sni AND dst_port
use_backend _recir_test if { req.ssl_sni -i test.example.com } { dst_port 443 } use_backend _recir_test1 if { req.ssl_sni -i test.example.com } { dst_port 8443 } Why is this not working? It looks like...
View Article
