Syslog Forwarding with send-proxy not working
Hi community, I’ve tried for a few hours to have syslog forwarding enabling with send-proxy / send-proxy-v2 and neither of them is working properly. What I want to achieve: syslog input with either...
View ArticleClik here to view.
Configuration "timeout http-request" in version 3.0.9 impacts the HTTP2...
I am upgrading the haproxy from 2.4.2 to 3.0.9 in a project, in which haproxy is used to route HTTP2 message. There is a global configuration “timeout http-request 10s” in the configuration file....
View ArticleWebsocket application least connection load balancing with minikube kubernetes
hi folks, I am in the middle of a new challenge, I am developing a backend app that will be fully consumed by websockets, I am researching the to implement the least connection algo load balancing in...
View ArticleKerberos - Exchange
Hello. I am trying to find and get all the information about how Kerberos works when using Exchange. Can you please advise - what are the requirements for this? I have found many topics and the...
View ArticleHaproxy using backend tcp
Hi community! \o/ After upgrading from HAProxy 2.3.7 to 3.1.7, I’ve encountered an issue that did not occur with the previous version. Here’s our setup: A VPN client connects to an AWS NLB listening...
View ArticleConfiguring TCP ports in Helm values file
I need to pass TCP connections to a ClusterIP Service, configured using a Helm values file. Adding this in the values.yaml file controller service: tcpPorts: - name: coturn port: 5349 targetPort: 5349...
View ArticleStick table - store strings to lookup strings
Hello, I’m trying to achieve a certain functionality in HAProxy. It might be possible, it might not. Our customers can use their own (whitelisted) domains. What I want to achieve When our main url...
View ArticleClik here to view.
ACL problems with country codes
Hi I’m trying to create acls that search a incoming header for a country code and send to the appropiate backend, its sort of working but not all work, in particular “Africa” and “middle east” can...
View ArticleBackend HTTP fallback?
Hi guys, I’m running a rocket chat server on port 3000 which I secured with ha proxy. I thought I setup rocket chat with caddy to accept SSL connections on port 3000. So I configured haproxy backend...
View ArticleSNAT to backend server
I’ve seen many articles related to SNAT and that the HAProxy can’t perform SNAT. They were all very old so I thought I would ask the question again to see if anything has changes. Here’s my issue: I...
View ArticleHaproxy ingress with sticky-session
I have researched about setting up kubernetes ingress controller in ingress resource having sticky session / session peristance , but not able to implement , any one can guide me ?? below is my...
View ArticleISP Load balancing
Hello, We have at the moment an HA pair of f5 devices performing ISP load balancing as follows: Router1 => F5 => Internal Network Router2 => F5 => Internal Network Router1 and Router2 are...
View ArticleHTTPS redirect on custom port not working
Hi there, I have a setup with lot of services listening on custom ports. The following configuration for a service listening on 45080 works fine if I enter https://my.web-site.com:45080 But gives...
View ArticleStats with docker containers
Hi Can anyone point me in the right direct, I have haproxy setup in docker containers. If I set it up as “static” regions e.g say dallas, frankfurt, singapore I can get stats working propely etc, I’m...
View ArticleHaproxy to Nginx Mail with send-proxy
I have had a lot of problems getting the real IP of the client with nginx as a mail proxy, this is my configuration worker_processes auto; events { worker_connections 1024; } mail { server_name...
View ArticleExpensive JWT ACL only for some backends
I have a common frontend that accepts connections from our external gateway and routes them to backends: frontend https-rev-auth mode http bind [::]:443 crt /etc/haproxy/ssl/fauth/ alpn h2,http/1.1 #...
View ArticleIngress controller: enable PROXY Protocol to backend TCP connection
I have the PROXY Protocol working fine to a backend HTTP server: apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: web-static annotations: haproxy.org/send-proxy-protocol: proxy I also...
View ArticleBlocking Bad Packets
We use HAProxy in HTTP mode as a front-end to our middleware. The middleware expects only HTTP packets. Anything that is not an HTTP packet can be discarded by HAProxy. We do get quite a number of...
View ArticleHaproxy custom error page does not always work
Hello In order to have customized error pages, I added some config into haproxy: http-errors defaulterrorpages errorfile 400 /etc/haproxy/errors/400.http errorfile 403 /etc/haproxy/errors/403.http...
View ArticleHealthcheck problem
Why doesnt this healthcheck work: if i leave option httpchk out it throws: [WARNING] (1) : backend ‘tor_backend’ uses http-check rules without ‘option httpchk’, so the rules are ignored. which stops...
View Article