"
Argh, me and my stupidity. :o ::)
That was exactly the case. Thank you so much.
That was exactly the case. Thank you so much.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
22.7 Legacy Series / HAProxy doesn't create some rules
November 07, 2022, 11:08:35 PM
Hi all,
I'm uncertrain if I'm experiencing a bug or what my problem is. I've set up a new server in my homelab that I want to reverse proxy to from the outside. To make life simple I've copied one existing server, just customizing the server and rules.
Weirdly when I look into the config, I can find the new backend that I created. But the rules and ACL do not show up in the config. In the UI I can see the rules.
Is this some sort of bug or am I doing something wrong? I've tried uninstalling and reinstalling the haproxy
packet. Same result.
When I triy to access the page I get http error 503.
My config:
I'm uncertrain if I'm experiencing a bug or what my problem is. I've set up a new server in my homelab that I want to reverse proxy to from the outside. To make life simple I've copied one existing server, just customizing the server and rules.
Weirdly when I look into the config, I can find the new backend that I created. But the rules and ACL do not show up in the config. In the UI I can see the rules.
Is this some sort of bug or am I doing something wrong? I've tried uninstalling and reinstalling the haproxy
packet. Same result.
When I triy to access the page I get http error 503.
My config:
Code Select
global
uid 80
gid 80
chroot /var/haproxy
daemon
stats socket /var/run/haproxy.socket group proxy mode 775 level admin expose-fd listeners
nbproc 1
nbthread 3
hard-stop-after 60s
no strict-limits
maxconn 1000
tune.ssl.default-dh-param 2048
spread-checks 2
tune.bufsize 16384
tune.lua.maxmem 0
log /var/run/log local0 debug
lua-prepend-path /tmp/haproxy/lua/?.lua
defaults
log global
option redispatch -1
maxconn 500
timeout client 30s
timeout connect 30s
timeout server 30s
retries 3
default-server init-addr last,libc
# autogenerated entries for ACLs
# autogenerated entries for config in backends/frontends
# autogenerated entries for stats
# Frontend: https-server ()
frontend https-server
http-response set-header Strict-Transport-Security "max-age=15768000; includeSubDomains"
bind 0.0.0.0:443 name 0.0.0.0:443 ssl prefer-client-ciphers ssl-min-ver TLSv1.2 ciphers [...] crt-list /tmp/haproxy/ssl/61912cd8965147.28191565.certlist
mode http
option http-keep-alive
option forwardfor
# tuning options
timeout client 30s
# logging options
# ACL: vikunja_condition
acl acl_620ca7739b6861.33531864 hdr_beg(host) -i todo.mydomain.tld
# ACTION: todo_rule
use_backend todo_backend if acl_620ca7739b6861.33531864
# Backend: acme_challenge_backend (Added by ACME Client plugin)
backend acme_challenge_backend
# health checking is DISABLED
mode http
balance source
# stickiness
stick-table type ip size 50k expire 30m
stick on src
# tuning options
timeout connect 30s
timeout server 30s
http-reuse safe
server acme_challenge_host 127.0.0.1:43580
# Backend: todo_backend (Vikunja Backend)
backend todo_backend
# health checking is DISABLED
mode http
balance source
# stickiness
stick-table type ip size 50k expire 30m
stick on src
# tuning options
timeout connect 30s
timeout server 30s
http-reuse safe
server todo todo.lan:80
# Backend: immich_backend (immich Backend)
backend immich_backend
# health checking is DISABLED
mode http
balance source
# stickiness
stick-table type ip size 50k expire 30m
stick on src
# tuning options
timeout connect 30s
timeout server 30s
http-reuse safe
server immich immich.lan:80
# statistics are DISABLED
Pages1
