HAProxy - wrong ssl certificater after upgrade to 24.1

Started by Tubs, January 31, 2024, 08:09:54 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 31, 2024, 08:09:54 PM
Hello,

for the issue with IDS not workong after update I could find quickly here the solution.
Now I have detected the second issue after update to 14.1.

I use HAProxy in a mix of SNI frontend (TCP type) and https frontend (SSL offloading). For offloading I use two hostnames with two ssl certificates that will will use two different backend servers.

Since the update the wrong certificate of the both is getting provided to the client. Backend selection is as expected. This setup is running since years. It broke when I upgraded to 14.1 yesterday.
January 31, 2024, 08:33:38 PM #1
Hi,
maybe you face the issue described here:
https://forum.opnsense.org/index.php?topic=38435.0
February 02, 2024, 08:30:55 PM #2
Thank you.
This looks like the issue I am facing.
Print
Go Up Pages1
User actions