HAProxy Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 10: Line 10:


{{Internal|HAProxy_Configuration#Logging_Configuration|HAProxy Logging Configuration}}
{{Internal|HAProxy_Configuration#Logging_Configuration|HAProxy Logging Configuration}}
=Connection Health Check=
{{External|https://www.haproxy.com/doc/aloha/7.0/haproxy/healthchecks.html#}}


=SSL Support=
=SSL Support=

Revision as of 03:47, 4 July 2017

Internal

Logging

http://cbonte.github.io/haproxy-dconv/1.8/management.html#8

HAProxy does not write log information on disk, but it forwards it to the syslog server, over UDP, by default on port 514.

HAProxy Logging Configuration

Connection Health Check

https://www.haproxy.com/doc/aloha/7.0/haproxy/healthchecks.html#

SSL Support

https://serversforhackers.com/using-ssl-certificates-with-haproxy

HAProxy can be configured to terminate the SSL connection or to pass it through the backend server.

SSL Termination

SSL Pass-Through

When HAProxy is configured with SSL pass-through, the backend servers handle the SSL connection, rather than the load balancer. The load balancer will just simply proxy the request off to its backend server. The connection will remain encrypted, and the load balancer cannot see what it contains. The frontend will have to be configured in "tcp" mode. For more details on configuration, see:

HAProxy SSL Pass-Through Configuration