So we are using HAProxy to replace Microsoft Network Load Balancer in our email environment.
All functionality is working but I am seeing the LB IP as the source address for all incoming emails. I’ve been searching the internet for answers but I came here for some direction.
I have frontends for ports 25,80,443,110,143,465,587,993,995
bind 18.104.22.168:25 name 22.214.171.124:25
timeout client 30000
That is tied to backends created for each of the above frontends.
stick-table type ip size 100m expire 1d
stick on src
timeout connect 30000
timeout server 30000
server Mail_1 126.96.36.199:25 id 101 check inter 1000
server Mail_2 188.8.131.52:25 id 102 check inter 1000
server Mail_3 184.108.40.206:25 id 103 check inter 1000
So what do I need to change to preserve client IPs?
I’ve seen that I should use one of the following options
source 0.0.0.0 usesrc clientip
But I’m not finding config examples for this nor am I seeing the best reason for one over the other.