Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    HAPROXY and constant traffic on LAN

    Cache/Proxy
    3
    3
    378
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • O
      olegfromny last edited by

      Hi Guys,

      I have a strange anomaly using HAProxy : one LAN IP, one primary front end and 2 secondary front ends [all with their own backends]. After disconnecting my router from WAN I still can see traffic on LAN basically pinging my internal IPs.
      It causes a few problems … I can see on my web sites requests to port 80, 443 without real clients.

      Any idea why its happening ?

      Thanks.

      1 Reply Last reply Reply Quote 0
      • O
        oki last edited by

        you enabled health checks for your backends. default is a http-check every second.

        1 Reply Last reply Reply Quote 0
        • dragoangel
          dragoangel last edited by

          Create 2 firewall rule to block trafic on interface LAN for IPv4 TCP destination: Firewall itself destination port 1: HTTP and duplicate it to second rule and change to destination port 1: HTTPS. This is easy like a charm

          Latest stable pfSense on 2x XG-7100 and 1x Intel Xeon Server, running mutiWAN, he.net IPv6, pfBlockerNG-devel, HAProxy-devel, Syslog-ng, Zabbix-agent, OpenVPN, IPsec site-to-site, DNS-over-TLS...
          Unifi AP-AC-LR with EAP RADIUS, US-24

          1 Reply Last reply Reply Quote 0
          • First post
            Last post