Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    HAProxy backend ACL won't save

    Scheduled Pinned Locked Moved Cache/Proxy
    1 Posts 1 Posters 148 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • nundrumN Offline
      nundrum
      last edited by

      Using 2.7.2-RELEASE with haproxy 2.8.3.

      This is really odd. It seems like it should be pretty simple.

      When editing the backend entry, I expand the Access control lists and actions section.

      Then I create an ACL named certNotValidACL
      with expression type SSL Client certificate valid.

      Then I create an Action of http-request deny for condition certNotValidACL.

      After saving and clicking Apply Changes I get the following error:

      Errors found while starting haproxy
[NOTICE] (99213) : haproxy version is 2.8.3-86e043a
[NOTICE] (99213) : path to executable is /usr/local/sbin/haproxy
[ALERT] (99213) : config : parsing [/var/etc/haproxy_test/haproxy.cfg:52] : error detected while parsing an 'http-request deny' condition : no such ACL : 'certNotValidAcl'.
[ALERT] (99213) : config : Error(s) found in configuration file : /var/etc/haproxy_test/haproxy.cfg

      And sure enough, the test haproxy.cfg file is lacking the ACL entry.

      Thanks in advance for any help on this!

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.