Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to Config HAProxy for both SSL Offloading and Passthrough via port 443 depending on the FQDN.

    Scheduled Pinned Locked Moved Cache/Proxy
    1 Posts 1 Posters 330 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      dungtran88
      last edited by

      Hi, I have a couple of internal servers that does not play well with SSL Offloading and required to have the HA Proxy configured for Passthrough and allow the backend server to handle the SSL certificate. Below is an example of how I need to configure my HAProxy.

      +++++++++++++++++++++++++++++++
      Server1.domain.com:443 ---> SSL Offloading
      Server2.domain.com:443 ---> SSL Offloading
      Server3.domain.com:443 ---> Passthrough (SSL is handled in the backend)
      +++++++++++++++++++++++++++++++

      I only have 1 public IP, so I don't have the option to create a VIP for the "Server3.domain.com." Is there a way to configure the HA Proxy to allow either SSL Offloading or Passthrough based on the server FQDN? Additionally, I am rarely new to networking and have some trouble configuring a passthrough via HA Proxy on Pfsense. Does anyone have an example?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.