Messages

1

Tutorials and FAQs / Re: HowTo - Let's encrypt with HaProxy with 19.1.4

« on: December 13, 2019, 10:33:10 pm »

Just wanted to reply thanking you for this, it's working great!  I'm home-bound for a few weeks following spinal surgery, so I'm finally getting to spend some time on my home lab.  Have been trying to get this working off and on for about a month now, but after completely blowing away my previous HAProxy config and following along here step by step, it was practically easy!

I only had a couple issues following along that I wanted to share with anyone else using this guide:
First was that I got a Test Config failure after creating the first front-end.  Turns out that I had to add an HTML header to the <html> tag in the Advanced/Error Message/403_deny.  Don't know if this is a new requirement or what, but it's a simple fix.  Altogether, it looked like this:

Code: [Select]

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Connection: close
Content-Type: text/plain
Retry-After: 60

<html><body><h1>403 Forbidden</h1>
Request forbidden by administrative rules.
</body></html>
Second, I wasn't exactly sure where to add the certs to the frontend (on the very last step).  Turns out I got it on the first try by adding my new certs to SSL Offloading/Certificates.  I did not need to make any changes to the Client Certificate Auth section (default=disabled) which is what confused me.

Again, thank you for the write-up!  Nextcloud seems to be working great behind the reverse proxy, so it's on to Collabora and a whole lot of others!