Globally accessible ACL

pmanno · September 20, 2018, 8:41pm

Hi All,

Working on a solution for a maintenance page based upon:

https://gist.github.com/sts/62d8dd59221ab68661aa

This works really well, but I want to have a SINGLE acl apply to multiple listen/frontend blocks. That way, instead of doing a:

echo "add acl #0 0.0.0.0/0" | nc -U <socket>

On every acl instance, I could do it once and have every block see it. Does anyone know if this is possible?

Thanks,
Paul

pmanno · September 20, 2018, 9:14pm

Nevermind! Managed to get it working with maps:

acl web_maintenance src,map_ip(/etc/haproxy/web_maintenance.txt) -m str 1
acl web_maintenance_ex src,map_ip(/etc/haproxy/web_maintenance_ex.txt) -m str 1

use_backend web_maintenance if web_maintenance !web_maintenance_ex

Topic		Replies	Views
HaProxy ACL - internal IP addresses Help!	2	557	March 18, 2021
HAProxy acl and maps Help!	1	1463	December 5, 2019
Configuring virtual ACL and Map files Help!	2	35	August 13, 2024
From what version can I use 1 acl in multiple backends Help!	0	108	March 14, 2024
Write the haproxy acl to separate file Help!	0	382	April 20, 2022

Globally accessible ACL

Related topics