HAProxy community

Hitless operation with chroot

i have haproxy configured with chroot operation and all is well (HA-Proxy version 2.0.1-1ppa1~bionic 2019/06/27 - https://haproxy.org/) … i’m interested in adding hitless operation …

i’ve added the following to my cfg file (stats socket /var/run/haproxy.sock mode 600 expose-fd listeners level user) …

do i need to specify or place (/var/run/haproxy.sock) in my chroot directory (/var/empty) or is my current configuration correct?

thanks in advance

global
	maxconn 100
	daemon
	tune.ssl.default-dh-param 2048
	chroot /var/empty
	user haproxy
	group haproxy
  	stats socket /var/run/haproxy.sock mode 600 expose-fd listeners level user

i believe using a port vs file system is simpler for chroot…

e.g. stats socket 127.0.0.1:9002 expose-fd listeners level user vs. /var/run/haproxy.sock which i would have to place in my chroot directory /var/empty

It needs to be a unix socket.

You don’t have to care about chroot, as the socket is opening before chrooting afaik.

thanks