• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

HAProxy backend ACL won't save

Scheduled Pinned Locked Moved Cache/Proxy
1 Posts 1 Posters 149 Views 1 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • N Offline
    nundrum
    last edited by Jul 8, 2024, 9:50 PM

    Using 2.7.2-RELEASE with haproxy 2.8.3.

    This is really odd. It seems like it should be pretty simple.

    When editing the backend entry, I expand the Access control lists and actions section.

    Then I create an ACL named certNotValidACL
    with expression type SSL Client certificate valid.

    Then I create an Action of http-request deny for condition certNotValidACL.

    After saving and clicking Apply Changes I get the following error:

    Errors found while starting haproxy
    [NOTICE] (99213) : haproxy version is 2.8.3-86e043a
    [NOTICE] (99213) : path to executable is /usr/local/sbin/haproxy
    [ALERT] (99213) : config : parsing [/var/etc/haproxy_test/haproxy.cfg:52] : error detected while parsing an 'http-request deny' condition : no such ACL : 'certNotValidAcl'.
    [ALERT] (99213) : config : Error(s) found in configuration file : /var/etc/haproxy_test/haproxy.cfg 
    

    And sure enough, the test haproxy.cfg file is lacking the ACL entry.

    Thanks in advance for any help on this!

    1 Reply Last reply Reply Quote 0
    1 out of 1
    • First post
      1/1
      Last post
    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
      This community forum collects and processes your personal information.
      consent.not_received