• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

haproxy HTTP and SSH

Scheduled Pinned Locked Moved Cache/Proxy
1 Posts 1 Posters 554 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • S
    stuartbh
    last edited by Feb 16, 2022, 11:24 PM

    Dear pfSense experts and users:

    It interests me to proxy both HTTPS and SSH traffic to some of my internal servers.

    Let us presume that three DNS record exist in public DNS, and that 1.2.3.4 is a publicly routed IP address to my pfSense router.

    server1.test.com -> 1.2.3.4
    server2.test.com -> 1.2.3.4
    server3.test.com -> 1.2.3.4

    I understand it is possible to have all traffic coming in on port 443 (if server1.test.com is the domain name used) sent to say 192.168.50.1 inside my network, server2.test.com to 192.168.50.2 and server3.test.com to 192.168.50.3 all on internal port 443 for each server. I have seen a few examples (I have yet to study and test them in my environment), but I feel confident this is easily possible.

    My question is can such a configuration as described herein above exist in concert with some sort of configuration that would allow the following:

    ssh user@server1.test.com (going to 192.168.50.1 port 22)
    ssh user@server2.test.com (going to 192.168.50.2 port 22)
    ssh user@server3.test.com (going to 192.168.50.3 port 22)

    I saw an example of using HAPROXY to proxy SSH but it required this very long, complicated and transmogrified line to exact the connection.

    Reference: https://www.haproxy.com/blog/route-ssh-connections-with-haproxy/

    thanks in advance!

    Stuart

    1 Reply Last reply Reply Quote 0
    1 out of 1
    • First post
      1/1
      Last post
    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
      This community forum collects and processes your personal information.
      consent.not_received