HA proxy with ssl
-
I have pfsense 2.8 recent upgrade from 2.7 and HAproxy installed. I have 2 frontend http and https.
https is set as ssl/https/tcp mode. I have a few systems like a few mail servers, nextcloud and ispconfig running a few websites. Let`s say for this example, my domain is contose.com and the mail server is contoso.com. The website contoso.com is on ispconfig. I have added it now as ssl and I can see when my phone try to sync emails, its showing an error every so often as its getting the certificate from contoso.com and not mail.contose.com. Any idea what could be wrong please?rajbps
-
hi team anyone could advise please?
-
@rajbps said in HA proxy with ssl:
not mail.contose.com.
Where does the MX record of your domain contose.com points to ?
IT should be "mail.contose.com", so the phone connects to, "mail.contose.com" and from there the mail server should uses a certificate that includes then SAN "mail.contose.com" (or a wildcard *.contose.com").That's for the 'normal' case.
I can't tell if HAproxy works with your mail server also (if that's even possible) -
@Gertjan said in HA proxy with ssl:
not mail.contose.com.
@Gertjan I have 2 isp and mail.contose points to those ip addresses and MX. I am using a linux mail server. I have a DV cert installed on each server. for my web server I have added the following:
and the default backend for that rule is httpswww-copy
