HAProxy set output interface and IP Address

shayandely · Dec 23, 2020, 8:46 PM

I have used HAProxy for couple of months and my traffic was routed though one IP address. For some security reasons, I have to listen on an IP address and send the traffic to the servers with different IP Address. So in this case, what should I do to achieve this goal?
EX: listen IP is : 10.0.0.1----- send traffic to backend servers : 10.0.0.2
Also I have just an interface , Only LAN !!! (one hand method)

PiBa · Dec 24, 2020, 7:11 AM

@shayandely
First configure the pfSense box 2 IP's one on the nic-interface the other as a IP-alias.

Then on the haproxy configuration pages configure the Frontend to listen on the desired IP.
As for the backend server its possible to configure a textual option for the servers in a backend. There you could write the text "source 10.0.0.2" iirc that should make it so the TCP connections on the backend are made from that IP.

shayandely · Dec 24, 2020, 7:11 AM

@piba
Thank you so much. It works like a charm!!