Simplified ACL for SNI matching

Thoufiq · February 22, 2020, 10:23am

Hi There,

We are doing SNI based routing for multiple domains through our HAProxy LBs. but i need to add few more domains in the same HAproxy clusters.

Is there any easy way to group these domains in a single line acl?

Is it possible to configure like this?

tcp-request content accept if { req_ssl_hello_type 1 }
acl application_5 req_ssl_sni -i example(1-10).haproxy.com

Please help.

lukastribus · February 24, 2020, 11:30am

It’s a normal ACL. You can match it against a file with a list of expressions, you can use regular expressions, etc.

Please read:

Topic		Replies	Views
SNI routing to servers - only ever sent to first server Help!	3	3671	May 26, 2017
SNI HTTPS Redirection Help!	16	2354	December 5, 2019
Https multiple domain routing Help!	6	1152	December 3, 2021
Acl path_beg does'nt work with my sni Help!	12	551	October 6, 2023
[SOLVED] One IP, fistful of domains, pack of subdomains and HAProxy in front of it Help!	12	2903	November 4, 2018