Hello, I’m using haproxy for restricted internet access for some computers that do not have access to the internet. I am able to get all sites to work (Ups & emaint), but for some reason www.fedex.com is not working under this configuration. I was thinking its an akami issue, but looks like UPS is using Akami as well. If anyone could assist what I’m doing wrong it would be appreciated. Any suggestions or comments appreciated.
My test machine is connecting to the sites via host file entries: IE www.ups.com point to haproxy
global
stats socket :9000 mode 660 level admin
log /dev/log local2 debug
resolvers dns1
nameserver dns1 8.8.8.8:53
accepted_payload_size 8192 # allow larger DNS payloads
frontend https
bind *:443
option tcplog
mode tcp
tcp-request inspect-delay 5s
tcp-request content accept if { req.ssl_hello_type 1 }
use_backend emaintx49 if { req.ssl_sni -i x49.emaint.com }
use_backend fedex if { req.ssl_sni -i www.fedex.com }
use_backend fedex if { req.ssl_sni -i fedex.com }
use_backend ups if { req.ssl_sni -i www.ups.com }
default_backend emaintx49
backend emaintx49
mode tcp
balance source
server-template emaint2 2 x49.emaint.com:443 check resolvers dns1 init-addr none check inter 2000 rise 2 fall 5 verify none
backend fedex
mode tcp
balance source
server-template fedex2 2 www.fedex.com:443 check resolvers dns1 init-addr none check inter 2000 rise 2 fall 5 verify none
backend ups
mode tcp
balance source
server-template ups2 2 www.ups.com:443 check resolvers dns1 init-addr none check inter 2000 rise 2 fall 5 verify none