PROXIES
-
Hey guys I am new to HAProxy and it was recommended to me by a friend. However, I am not set on it. If anyone has any other suggestions for proxies please let me know. I currently now have more than one web server so port forwarding is no longer going to work,I did my best to set it up according to the instructions given to me but it doesn’t seem to be working for me. I have 2 web servers and 2 domains btw. Here is my setup. Thanks for your help!
-
-
So what's not happening? What is happening?
What do the logs show?
How are you testing?
Steve
-
@stephenw10 Thank you for your response! So the www. is the primary domain I use for a nextcloud server and the gaming. is the subdomain I use. When I turn off port forwarding and turn off snort and clear all blocks then try to access the Nextcloud server it says the site is not secure and wont load and when I try to use the gaming. it doesn't exist which is accurate at the moment. The SSL cert is on the nextcloud server. I dont see anything in the logs that shows an error.
-
@natethegreat21
Even if you post the same screenshots multiple times, it gets not more clear, what you have configured actually, since the pics are still missing comments.And also the questions stay the same:
Did you import the SSL certificates into pfSense?
Obviously you didn't. However, this is necessary for HAproxy allowing to read the host header.
I mentioned this already in the other thread, I think.You have the ACLs configured on host name basis. So HAproxy must be able to get it. But the client only send the host name after he got an SSL certificate from the server. So that requires that HAproxy has SSL certificates assigned in the frontends.
Without importing the certificates you can only use TCP mode frontends and configure the ACLs to read the SNI.
