One port to catch HTTP and HTTPS requests and redirect to the HTTPS version

lukastribus · October 23, 2017, 10:57am

Use a TCP frontend to differentiate between HTTP and SSL traffic, than recirculate the traffic to proper HTTP or HTTPS frontends.

Something like:

frontend port801_combined
    mode tcp
    bind :801
    tcp-request inspect-delay 2s
    tcp-request content accept if HTTP
    tcp-request content accept if { req.ssl_hello_type 1 }
    use_backend recir_http if HTTP
    default_backend recir_https

backend recir_http
    mode tcp
    server loopback-for-http abns@haproxy-http send-proxy-v2
backend recir_https
    mode tcp
    server loopback-for-https abns@haproxy-https send-proxy-v2

frontend fe-https
    mode http
    bind abns@haproxy-https accept-proxy ssl crt /etc/ssl/private/unified-cert-file.pem
    # whatever you need todo for HTTPS traffic
frontend fe-http
    mode http
    bind abns@haproxy-http accept-proxy
    # whatever you need todo for HTTP traffic

Topic		Replies	Views
Http to https on same frontend port Help!	5	1576	May 27, 2020
In https port redirect http to https Help!	1	311	March 6, 2024
Redirect based on virtual host Help!	19	21628	February 22, 2018
Redirecting HTTP to HTTPS Help!	3	7159	February 13, 2018
Simple method for doing http -> https frontend redirects in HAProxy? Help!	1	4514	January 26, 2018

One port to catch HTTP and HTTPS requests and redirect to the HTTPS version

Related topics