OPNsense Forum

Archive => 22.1 Legacy Series => Topic started by: doodeepawla03 on October 05, 2022, 07:11:18 am

Title: HAProxy, loopback to frontend using unix socket
Post by: doodeepawla03 on October 05, 2022, 07:11:18 am

Hello, i have two registered domains (both pointing to one ip address), lets say domain-a and domain-b.
Both domains access via https on the default port 443 and i don't want to change it.

But, to access domain-b i want the users to identify themselves via a client-certificate i handed them out.
Domain-a should be accessable by the public without certificates, but of course via https.

To do this, i created a tcp-frontend that uses a rule to decide which backend should be used (the rule uses sni to identify if the request is coming from domain-a or domain-b).

I also created two other frontends (this time in http-mode). The listening addresses are now unix sockets (unix@sock-a for domain-a and unix@sock-b for domain-b).

Because i created two frontends with unix sockets i can now create real-servers that use those sockets.

The backends (backend-a and backend-b) are linked to the real-servers (sock-a or sock-b) and get requests from the tcp frontend.

My problem is that when im accessing the frontend i get an empty reply (code 52).

Do i miss something when using unix-sockets?
สมัครpg slot (https://kartpark.com/เว็บpg-slot/)

Title: Re: HAProxy, loopback to frontend using unix socket
Post by: Fright on October 05, 2022, 03:02:03 pm

hi
https://forum.opnsense.org/index.php?topic=28007.0 duplicate?
https://github.com/opnsense/plugins/pull/3093