ACL rule not working for TCP mode

kmg · June 4, 2016, 12:05pm

I tried to enable blocking for incoming source ips on tcp mode. I used the below config in my setup , but its not working. Not sure whether any wrong in the configuration. Please someone help me on this.

HAproxy version 1.6.5

Mode : TCP

frontend localtcp8089
	bind 10.11.13.20:8089			
	acl blocklist src 10.11.12.13
        tcp-request connection reject if blocklist
	use_backend localapp1

sjiveson · August 22, 2016, 2:29pm

Hmmm, it looks OK to me. How are you testing/confirming that it fails.

Also, this might be a bit clearer:

tcp-request connection reject if { src 10.11.12.13 }

Topic		Replies	Views
Block IP address block ....deny ip is not working for some reason Help!	2	1072	July 29, 2023
ACL filters when using mode tcp? Help!	3	4921	August 27, 2021
SSL passthru not working Help!	4	582	December 10, 2020
HAProxy and TCP Mode not working correctly on Layer 7 Help!	0	469	February 15, 2020
ACLs not recognizing TCP traffic Help!	3	886	July 10, 2019

ACL rule not working for TCP mode

Related topics