HAProxy SSL Termination with differents ports, it's possible?

tantunes · February 15, 2016, 1:18pm

First, overview architecture:

—> https —> Apache --> https:7145 --> Balance (Haproxy):7145 --> backend:7145 (tomcat https).

The connection https incoming in apache:
#Framework
ProxyPass /token https://balance:7145/token smax=5 max=10 ttl=120 retry=300
ProxyPassReverse /token https://balance:7145/token
haproxy conf

frontend https
bind 172.17.37.93:7145 ssl crt /etc/httpd/certificados/apiqlt/apiqlt.ogmaster.local.pem ( contains a cert for all the domains you want to host, or a wildcard cert that covers them)
mode http
default_backend server_https

backend server_https

redirect scheme https if !{ ssl_fc }

    mode http
    server server1 172.17.35.231:7145 check

The problem is that https is in different port and encrypts who is apache
Like the haproxy made only brige the https connection, it’s possible ? with diffents ports https ?
I tested with tcp mode without success for ssl backends

Topic		Replies	Views
Backend redirecting https-termination to http Help!	0	602	July 20, 2021
Only one port for http and https with ssl termination Help!	0	482	June 30, 2020
Backend using https on different port Help!	5	4835	November 9, 2018
HAProxy unable to redirect to HTTPS when terminating Help!	6	2686	February 27, 2018
Ssl redirection issue Help!	6	1691	November 3, 2017

HAProxy SSL Termination with differents ports, it's possible?

redirect scheme https if !{ ssl_fc }

Related Topics