Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Issue with 502 Gateway - Cors issue ?

    Scheduled Pinned Locked Moved Cache/Proxy
    1 Posts 1 Posters 298 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      smalldragoon
      last edited by

      Hi All,
      I set a basic config with pfsense as SSL termination.
      I'm using a CMS on a standard Apache / PHP / Mysql system.
      Reaching the website, I it half working as I have on a regular basis some 502 bad gateway errors and seems linked to cors issue ?
      cadfac7b-ce6c-4b52-8067-a51cda59197e-image.png
      Am I right saying this ?
      If so , I found this article in the forum for CORS :

      https://forum.netgate.com/topic/171678/enabling-cors-in-haproxy?_=1715866714636

      But wanted before going this way to double check if it is really my issue as my other sites seems not to be problematic.
      Issue is on "stream", "main" and "moodle" are ok

      Here is for ref my haproxy .conf

      # Automaticaly generated, dont edit manually.
      # Generated on: 2024-05-03 09:36
      global
              maxconn                 5000
              log                     /var/run/log    syslog  debug
              stats socket /tmp/haproxy.socket level admin  expose-fd listeners
              uid                     80
              gid                     80
              nbthread                        1
              hard-stop-after         15m
              chroot                          /tmp/haproxy_chroot
              daemon
              tune.ssl.default-dh-param       2048
              log-send-hostname               MAIN
              server-state-file /tmp/haproxy_server_state
      
      listen HAProxyLocalStats
              bind 127.0.0.1:2200 name localstats
              mode http
              stats enable
              stats refresh 10
              stats admin if TRUE
              stats show-legends
              stats uri /haproxy/haproxy_stats.php?haproxystats=1
              timeout client 5000
              timeout connect 5000
              timeout server 5000
      
      frontend Main_FrontEnd
              bind                    MY_PUBLIC_IP:443 name MY_PUBLIC_IP:443   ssl crt-list /var/etc/haproxy/Main_FrontEnd.crt_list
              mode                    http
              log                     global
              option                  httplog
              option                  http-keep-alive
              option                  forwardfor
              acl https ssl_fc
              http-request set-header         X-Forwarded-Proto http if !https
              http-request set-header         X-Forwarded-Proto https if https
              timeout client          30000
              acl                     Direct  var(txn.txnhost) -m str -i cleafy.MY_DOMAIN.com
              acl                     Stream  var(txn.txnhost) -m str -i cleafystream.MY_DOMAIN.com
              acl                     Wordpress       var(txn.txnhost) -m str -i wordpress.MY_DOMAIN.com
              acl                     MoodleSSL       var(txn.txnhost) -m str -i moodle.MY_DOMAIN.com
              acl                     aclcrt_Main_FrontEnd    var(txn.txnhost) -m reg -i ^([^\.]*)\.MY_DOMAIN\.com(:([0-9]){1,5})?$
              http-request set-var(txn.txnhost) hdr(host)
              use_backend Direct_ipvANY  if  Direct aclcrt_Main_FrontEnd
              use_backend Stream_ipvANY  if  Stream aclcrt_Main_FrontEnd
              use_backend Wordpress_ipvANY  if  Wordpress aclcrt_Main_FrontEnd
              use_backend Moodle-SSL_ipvANY  if  MoodleSSL aclcrt_Main_FrontEnd
      
      
      backend Direct_ipvANY
              mode                    http
              id                      110
              log                     global
              timeout connect         30000
              timeout server          30000
              retries                 3
              load-server-state-from-file     global
              server                  Moodle-SSL X.Y.Z.114:80 id 101 check inter 1000
      
      backend Stream_ipvANY
              mode                    http
              id                      111
              log                     global
              timeout connect         30000
              timeout server          30000
              retries                 3
              load-server-state-from-file     global
              server                  Moodle-SSL X.Y.Z.175:80 id 101 check inter 1000
      
      backend Wordpress_ipvANY
              mode                    http
              id                      112
              log                     global
              timeout connect         30000
              timeout server          30000
              retries                 3
              load-server-state-from-file     global
              server                  Moodle-SSL X.Y.Z.119:80 id 101 check inter 1000
      
      backend Moodle-SSL_ipvANY
              mode                    http
              id                      100
              log                     global
              timeout connect         30000
              timeout server          30000
              retries                 3
              load-server-state-from-file     global
              server                  Moodle-SSL X.Y.Z.145:80 id 101 check inter 1000
      

      Thanks for your insights !

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.