Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    HAProxy ssl offloading not working

    Scheduled Pinned Locked Moved Cache/Proxy
    1 Posts 1 Posters 18 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H Offline
      hoeselr
      last edited by

      We installed haproxy on Netgate 8200 device 25.07.1-RELEASE (amd64)
      installed acme certificates and get certificate from letsencrypt, everything ok.

      checked ssl offload in frontend and selected the acme generated certificate
      under SSL Offloading.

      result after Apply Changes:

      Errors found while starting haproxy
      [NOTICE] (72045) : haproxy version is 2.9.14-7c591d5
      [NOTICE] (72045) : path to executable is /usr/local/sbin/haproxy
      [ALERT] (72045) : config : Couldn't open the ca-file '/var/etc/haproxy_test/clientca_WAN_117.pem' (No such file or directory).
      [ALERT] (72045) : config : parsing [/var/etc/haproxy_test/haproxy.cfg:15] : 'bind x.x.x.x:443' in section 'frontend' : 'ca-file' : unable to load /var/etc/haproxy_test/clientca_WAN_117.pem
      [ALERT] (72045) : config : Error(s) found in configuration file : /var/etc/haproxy_test/haproxy.cfg
      [ALERT] (72045) : config : Fatal errors found in configuration.

      also package _devel has the same issue.

      on other boxes where haproxy was configured on 24.11 - upgraded to 25.07.1 its working.

      BUG ?? so what can we do now -bolded text we need this function.

      thank you all in advance

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.