I’m interested in logging failed SSL handshakes, and require knowing which server name was sent in the SNI request (we occasionally get requests for domains which still don’t have a certificate and would like to generate one for them).
I’ve tried using ssl_fc_err_str and ssl_fc_sni, but couldn’t log the server name. ssl_fc_sni is empty (-). Can someone help?
HAProxy version 2.5.0-1~bpo10+1 2021/11/26 - https://haproxy.org/
OpenSSL library supports TLS extensions : yes
OpenSSL library supports SNI : yes