nick/haproxy-test
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added ssl/LE support using NGiNX

Browse Source
This commit is contained in:
Nick Leffler 2020-10-25 15:50:14 +00:00
parent ff09cd8ff5
commit 0dd22ce9ba
1 changed files with 16 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
haproxy.cfg
View File

@ -20,8 +20,11 @@ defaults
option http-server-close option http-server-close
#### Main fron end #### #### Main fron end ####
frontend https_front frontend main_front
bind *:80
bind *:443 ssl crt /etc/haproxy/ssl/ alpn h2,http/1.1 bind *:443 ssl crt /etc/haproxy/ssl/ alpn h2,http/1.1
# http-request redirect scheme https unless { ssl_fc }
redirect scheme https code 301 if !{ ssl_fc }
#### Stats Page #### #### Stats Page ####
stats uri /haproxy?stats stats uri /haproxy?stats
@ -37,15 +40,25 @@ frontend https_front
acl url_is_wp_admin path_beg /wp-admin /wp-login.php /manage /securein acl url_is_wp_admin path_beg /wp-admin /wp-login.php /manage /securein
use_backend adminServerHTTP if url_is_wp_admin use_backend adminServerHTTP if url_is_wp_admin
#### LE cert ####
acl letsencrypt-acl path_beg /.well-known/acme-challenge/
use_backend letsencrypt-backend if letsencrypt-acl
#### Configure Backends #### #### Configure Backends ####
default_backend webserversHTTP default_backend webserversHTTP
#### Main Backend #### #### Main Backend ####
backend webserversHTTP backend webserversHTTP
balance roundrobin balance roundrobin
server web02 10.108.0.5:80 check server web01 10.108.0.2:80 check
# server web02 10.108.0.5:80 check
#### Admin server #### #### Admin server ####
backend adminServerHTTP backend adminServerHTTP
balance roundrobin balance roundrobin
server web02 10.108.0.5:80 check server web01 10.108.0.2:80 check
# server web02 10.108.0.5:80 check
#### LE Backend ####
backend letsencrypt-backend
server letsencrypt 127.0.0.1:8080