• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Setup HAProxy - ACL with SourceIP

Scheduled Pinned Locked Moved Cache/Proxy
5 Posts 2 Posters 443 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • G
    Gamienator 0
    last edited by May 28, 2024, 8:37 AM

    Hello everyone,

    I'm curious if its possible to make an AND Condition in HA Proxy. I have only one Frontend but several backens that should only be accessable by only one specific Source IP while other backends can be accessed by everyone. That I need to create an ACL to use the backend is sure, but reading

    acl's are no longer combined with logical AND operators, list multiple acl's below where needed.
    

    means to me I need to make a different approach.

    Do I need to set in the Access Control List a custom acl and write it on my own or is there a GUI way of doing it?

    V 1 Reply Last reply May 28, 2024, 9:49 AM Reply Quote 0
    • V
      viragomann @Gamienator 0
      last edited by May 28, 2024, 9:49 AM

      @Gamienator-0
      Just enter all ACLs for your condition into the "Condition acl names" box of the action, separated by spaces.

      G 1 Reply Last reply May 28, 2024, 10:11 AM Reply Quote 0
      • G
        Gamienator 0 @viragomann
        last edited by May 28, 2024, 10:11 AM

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • G
          Gamienator 0
          last edited by May 28, 2024, 10:27 AM

          Thank you very much! Now I have to find out a way for using the pfSense Aliases.

          V 1 Reply Last reply May 28, 2024, 10:30 AM Reply Quote 0
          • V
            viragomann @Gamienator 0
            last edited by May 28, 2024, 10:30 AM

            @Gamienator-0
            Aliases can be used straight forward in ACLs.
            For instance to use an alias for some IPs, set the ACL expression to "Source IP matches IP or Alias" and enter the alias for the value.

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received