webUI and HAProxy on port 443 - Binding to specific CARP IP's
-
Re: Bind webGUI only to certain interfaces
Use CARP IP's to bind HAProxy to Specific IP/Interface
Hello! I was curious if anyone has had any experience with running HA Proxy while keeping the webUI on port 443. My first thought was to bind the webUI to specific interfaces/IP's but that doesn't seem to be possible. It seems like the simple and recommended solution would be to change the pfSense webUI port to something other than 443, but I don't want to do that.
Ideal Scenario
firewall a: 192.168.1.2 firewall b: 192.168.1.3 CARP LAN IP: 192.168.1.1 HA Proxy VIP: 192.168.1.254https://192.168.1.2 and https://192.168.1.3 go to the respective webui for each firewall
https://privateserver.example.com resolves to 192.168.1.254 and HA proxy serves the local web page. -
@ben-ihelputech said in webUI and HAProxy on port 443 - Binding to specific CARP IP's:
It seems like the simple and recommended solution would be to change the pfSense webUI port to something other than 443
You could change the WebUI port to something else and still use HAproxy to access both of them by using friendly host names.
-
@viragomann That would make more sense than trying to manual edit nginx rules make it work. It would be nice if they added the ability to bind the webui to specific interfaces in the future but I imagine that this is a pretty niche use case. I'll give your suggestion a shot and see what happens.