Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Can't seem to get HAProxy working

    Scheduled Pinned Locked Moved Cache/Proxy
    7 Posts 3 Posters 727 Views 3 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Z Offline
      zari90
      last edited by

      Re: Assistance with setting up HAproxy

      I tried quite a few configuration for traefik config but doesn't seem to work please see below the configuration used I'm sure its a very small issue that I have I set my netgate TCP port to 10443 and opened port 443 on WAN firewall but can't seem to see why it isn't working

      bcf226a0-1fab-4cba-88a2-bb50c529ea91-image.png

      0f9ebfb9-f16f-4786-910a-07e9c3c1201e-image.png

      913ed9f0-3010-4d39-a3b1-3af06c789d4a-image.png

      4352b1a3-c786-426e-ad82-1d8e26df130e-image.png

      120aa1ec-4d19-48cb-8cac-f26d8c2ffd78-image.png

      98c031ce-c14a-4260-9450-6db9bbda86ba-image.png

      bc736329-b46c-464c-9488-915d86af82d0-image.png

      0dc3ce15-8de1-4b08-afc0-de74324d941e-image.png

      V 1 Reply Last reply Reply Quote 0
      • M Offline
        michmoor LAYER 8 Rebel Alliance
        last edited by

        First problem i see is that your health check is failing with a 404 message. You would need to fix that or disable health checking.

        Firewall: NetGate,Palo Alto-VM,Juniper SRX
        Routing: Juniper, Arista, Cisco
        Switching: Juniper, Arista, Cisco
        Wireless: Unifi, Aruba IAP
        JNCIP,CCNP Enterprise

        1 Reply Last reply Reply Quote 0
        • V Offline
          viragomann @zari90
          last edited by

          @zari90
          If you do a http health check and state no certain URL to request, HAproxy just send health check request to the stated IP and port.
          But obviously your backend server is not responding to it.

          So either enter a proper URL to check or just use basic check method (TCP).

          Z 1 Reply Last reply Reply Quote 0
          • Z Offline
            zari90 @viragomann
            last edited by

            @viragomann

            81836d3a-6d58-4ed8-8a97-6e8ba4651cde-image.png

            0b2e7524-ea44-49dc-8fed-1e9297414422-image.png

            M 1 Reply Last reply Reply Quote 0
            • M Offline
              michmoor LAYER 8 Rebel Alliance @zari90
              last edited by

              @zari90
              There is a redmine on this. I opened one.
              Recreate the backend is the workaround.

              Firewall: NetGate,Palo Alto-VM,Juniper SRX
              Routing: Juniper, Arista, Cisco
              Switching: Juniper, Arista, Cisco
              Wireless: Unifi, Aruba IAP
              JNCIP,CCNP Enterprise

              Z 1 Reply Last reply Reply Quote 0
              • Z Offline
                zari90 @michmoor
                last edited by

                @michmoor

                okay I will try and recreate the backend and post again tomorrow

                Z 1 Reply Last reply Reply Quote 0
                • Z Offline
                  zari90 @zari90
                  last edited by

                  @zari90

                  9f4edffa-17ca-46b5-a78c-d09c12e60e91-image.png

                  got it working thanks guys appreciate the replies and the help switch from http to basic and it went green, switched it back to http and it went red then switched to ssl because it has a cert attached with my domain and it worked again

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.