Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    HAProxy not working externally

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 2 Posters 485 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mrjoli021
      last edited by

      My config is as follows.
      Internal-server(10.36.130.116) -> x.x.x.20/27. My app has port 80 exposed. From the web server when I ping out it responds back as the .20 address. This IP is alive and valid, it is also not being used by any other device in my network. I have created a DNS entry for this server and used letsencrypt to generate the cert and it generated without any issues.
      In the WAN firewall rules, I have ports 80/443 on the destination set, I have my internal IP 10.36.130.116. On the NAT I have the destination IP as the public IP X.X.X.20 and the internal IP of X.X.X.116. Without the HAProxy setup, I am able to get to the site via it's http://FQDN from outside my network.

      https://forums.serverbuilds.net/t/guide-reverse-proxy-via-haproxy-acme-on-pfsense/3513

      From HAProxy side, I created a VIP with the public IP and created the three frontends as per the video using the public IP's. I also created Backend as well. On the backend I have the server name as my FQDN and the address as my internal .116 IP.

      From any computer externally, I go the http://FQDN and it works, but unsecure. When I go to https://FQDN it says page can not be found.

      It is not redirecting me to https from the outside.

      From within my network, when I go to http://FQDN I do get redirected the https://FQDN

      so from within my network it works, but not externally.

      What am I missing?

      Thanks,

      V 1 Reply Last reply Reply Quote 0
      • V
        viragomann @mrjoli021
        last edited by

        @mrjoli021
        Did you remove the NAT rule again and add a rule to allow access to pfSense?

        https://forums.serverbuilds.net/t/guide-reverse-proxy-via-haproxy-acme-on-pfsense/3513

        From HAProxy side, I created a VIP with the public IP and created the three frontends as per the video using the public IP's. I also created Backend as well. On the backend I have the server name as my FQDN and the address as my internal .116 IP.

        The issue would be more comprehensible if you post your recent settings than referring to a video.

        M 1 Reply Last reply Reply Quote 1
        • M
          mrjoli021 @viragomann
          last edited by

          @viragomann

          That was it. Once I removed the NAT entry and added the firewall rule to allow it back in, it started working. Thanks,

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.