HAProxy SSL Pass-Through Configuration: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 19: Line 19:
   bind *:443
   bind *:443
   option tcplog
   option tcplog
   mode tcp
   [[HAProxy_Configuration#tcp|mode tcp]]
   default_backend nodes
   default_backend nodes


Revision as of 02:01, 4 July 2017

External

Internal

Overview

HAProxy Concepts - SSL Pass-Through

Frontend Configuration

Frontend binds on both 80 and 443 to allow both regular and SSL HTTP requests. 

frontend localhost
  bind *:80
  bind *:443
  option tcplog
  mode tcp
  default_backend nodes

iptables Considerations

If the host HAProxy is deployed on runs iptables, access to ports 80 and 443 has to be explicitly open as follows:

For more details see:

Allow a Web Server on a Specific Interface
Retrieved from "https://kb.novaordis.com/index.php?title=HAProxy_SSL_Pass-Through_Configuration&oldid=25731"