I apologize if I’ve used the wrong category, or if this isn’t the place – I was hoping I could get an answer on the HAProxy site itself from a couple experts.
I’ve been thinking that HAProxy could possibly be used as a firewall. I looked at a number of keywords that can reject source ips, redirect requests, reject based on destination + source, listen to ports, and prevent DDOS. This sounds like a good opportunity for a firewall in addition to its other high availability features.
However, I don’t want to shoehorn my idea and use HAProxy for a use case its not intended for, or limited in its capacity. I’ve seen cases where companies are hamstringed because they use software for an unsupported use case – and then instead of using a proper app, hurt because of this.
While possibly creative, I’m curious to know if it is a supported use case – or simply not a good idea. I’ve seen many times people asking about putting HAProxy behind a firewall, but never using HAProxy as a standalone firewall.
Has anyone done this?