Problem using internal web server port 443

magoo_it

Hello all,
After sorting out the issue with the 'interface', thanks again !!!
I m now facing a strange issue, when using the VPN I cannot access the internal WEB server sites using HTTPS port 443, but if I change the port to another, it allows me to browse the sites.

Using the VPN I can browse internet sites using all protocols, it's only to the INTERNAL web server.

Web server is behind HAproxy on the same PFsense, and on a Virtualmin (Ubuntu 20.04).
I tried several approaches, even disabled the HAproxy, with no success.
The web server has no firewall active.
I can ping and ssh to the server, and as I said, I can access the sites if I change the web port to other than 443.
Also, Im running a DNS resolver internally, and providing internal IPs to those sites, but if I don't do that, and the IP resolution comes from outside, or in other words, with the external IP, the web page can be accessed...
I have no more ideas, and the users need to use the internal web server, since we have an web app that they run.
Sorry, I'm getting a bit tired, and maybe not seeing things right ...

Maybe someone here can shine some light ...
Thanks in advance.
JG

magoo_it

Well after these whole hours I might say that the issue can be on the HAProxy side, but I cannot say why ...
HAproxy is configured to the WAN IP on port 443/80.
If I disable the HAproxy I can connect to the web servers, but not if HAproxy is enabled.

Why?
Shouldn't the 'routing' between the LAN and VPN interfaces be dealt with without passing thru the WAN?
It seems that traffic goes to WAN ... and is being intercepted by the HAproxy .
I'm confused .. or I'm missing a big issue in here ...

JG