I am terminating the SSL in haproxy and send the request received to backend server which is again running on https.
I want to inspect the payload on every response received from backend server and match a particular string in payload, if match I want to drop that response.
I have following configuration on my backend
tcp-response inspect-delay 5s
acl payloadmatch res.payload(0,100000) -m bin 7072617665656e
# acl payloadmatch res.payload(0,100000),hex -m sub 7072617665656e
http-response deny if payloadmatch
server events management.xxxyyy.com:443 check ssl verify none
But the above configuration is not working, still I am getting response instead of denying it.