ACL conditions
-
Hi everyone,
i need to configure HAProxy to be used with "AND" condition, to filter the traffic using our alias "vCD_OK_Clienti", can i ask you some support to do this ? thanks!
-
@ed-be
Configure both ACLs with different names(!). Then enter both into the action conditions field separated by a space. -
@viragomann Thanks for the reply i've now a problem with a redirect, giving us a 502 bad gateway error.
I think now that my main issue, it's, instead of the ip after "name"[name ------IP---------:443] (arrow) i need to use our fqdn, but i was unable from the pfsense GUI.
note:
Both IPs in the bind parameter are the same .
-
@ed-be
Check the stats if the backend is even shown as online.
I guess, it isn't. Then try with Basic health check in the backend settings.
You have enabled HTTP checks, but this needs some configuration effort. -
Thanks again, i've checked and everything is runnng fine, below some screens:
Any ideas ? i'm start losing hope.
-
@ed-be
I suspect, it's due to the way you redirect the traffic to the backends.
Your config shows public backend IPs (maybe you want to hide them). So are these IPs behind pfSense or are these IPs assigned to WAN?
The latter won't work, I think. -
@viragomann said in ACL conditions:
So are these IPs behind pfSense or are these IPs assigned to WAN?
Ok, so we are using this in L4 mode, and it's working fine. To reply to you we have no need to hide those public IPs, for us those are on a DMZ assigned to our WAN, so it's ok.
Thanks for your support Virago, sadly we are struggling a bit on this.