HAProxy SSL Termination with differents ports, it's possible?

tantunes · February 15, 2016, 1:18pm

First, overview architecture:

—> https —> Apache --> https:7145 --> Balance (Haproxy):7145 --> backend:7145 (tomcat https).

The connection https incoming in apache:
#Framework
ProxyPass /token https://balance:7145/token smax=5 max=10 ttl=120 retry=300
ProxyPassReverse /token https://balance:7145/token
haproxy conf

frontend https
bind 172.17.37.93:7145 ssl crt /etc/httpd/certificados/apiqlt/apiqlt.ogmaster.local.pem ( contains a cert for all the domains you want to host, or a wildcard cert that covers them)
mode http
default_backend server_https

backend server_https

redirect scheme https if !{ ssl_fc }

    mode http
    server server1 172.17.35.231:7145 check

The problem is that https is in different port and encrypts who is apache
Like the haproxy made only brige the https connection, it’s possible ? with diffents ports https ?
I tested with tcp mode without success for ssl backends

Topic		Replies	Views
Backend redirecting https-termination to http Help!	0	819	July 20, 2021
Only one port for http and https with ssl termination Help!	0	567	June 30, 2020
HAProxy unable to redirect to HTTPS when terminating Help!	6	3018	February 27, 2018
Help with SSL config with 1 root cert but mutiple subdomains listening on port 443 Help!	18	1036	July 17, 2020
Https configuration for haproxy Help!	5	598	January 24, 2022

HAProxy SSL Termination with differents ports, it's possible?

redirect scheme https if !{ ssl_fc }

Related Topics