Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    HAProxy set output interface and IP Address

    Cache/Proxy
    2
    3
    70
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shayandely last edited by

      I have used HAProxy for couple of months and my traffic was routed though one IP address. For some security reasons, I have to listen on an IP address and send the traffic to the servers with different IP Address. So in this case, what should I do to achieve this goal?
      EX: listen IP is : 10.0.0.1----- send traffic to backend servers : 10.0.0.2
      Also I have just an interface , Only LAN !!! (one hand method)

      P 1 Reply Last reply Reply Quote 0
      • P
        PiBa @shayandely last edited by

        @shayandely
        First configure the pfSense box 2 IP's one on the nic-interface the other as a IP-alias.

        Then on the haproxy configuration pages configure the Frontend to listen on the desired IP.
        As for the backend server its possible to configure a textual option for the servers in a backend. There you could write the text "source 10.0.0.2" iirc that should make it so the TCP connections on the backend are made from that IP.

        S 1 Reply Last reply Reply Quote 1
        • S
          shayandely @PiBa last edited by

          @piba
          Thank you so much. It works like a charm!!👍 👍 👍 👍

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy