Host becomes unreachable after haproxy
-
I installed haproxy and restarted pfsense.
My host (for testing purposes it's a Raspberry where I installed apache) is reachable from other devices on same LAN and from allowed VLANs. Its ip is given by the DHCP service.
But after i setup backend to this host and frontend it becomes unreachable (times out connections) from other VLANs. I made all calls to this host by using it's ip.
Disabling haproxy doesn't resolve the issue. Only uninstalling haproxy and restarting pfsense fix the problem.
I'm new to haproxy and I don't know why and how to resolve the issue. -
@valepe69
=>Can you please share your haproxy backend and frontend?
=>I guess your webserver on Pi board is running on port 80/http, if so your backend is on port 80 as well.
=>Are you trying to secure this via https on frontend?Note : Do not use same port for your pfsense webpage frontend and Haproxy frontend? , You need to change it to some other port if your are using same port numbers (example 443) at webconfigurator and haproxy frontend.
You will need to change the port the pfSense GUI is listening on in Sys > Adv > Admin Access. You cannot have nginx and HAProxy both listening on 443.
HAProxy would have logged that. It would have failed to start the frontend on 443. -
@rupesh
I used this site as tutorial.
I use and external port lime 18567 and set haproxy ti offloading ssl and redirect to port 80.
But if i call the host_ip:80 from VLANs it becomes unresponsive after HAProxy installation -
@valepe69
It would be better if your share a network sketch kind of -
@valepe69 said in Host becomes unreachable after haproxy:
But if i call the host_ip:80 from VLANs it becomes unresponsive after HAProxy installation
Only if you enable 'transparent client ip' feature on the backend. It has a 'warning' there with for a reason..
-
@piba that's
I googled a bit and I found the same thing.
Lesson learned: read carefully the notes... -
