SNI based rule - two application behind one port

Hello all,
I have a requirement to run two different applications on a host behind port 443. When requesting the FQDN of the system, the request needs to be forwarded unchanged to another port. On the other hand, if the alias is addressed, the request should be forwarded to my nginx using the HAproxy protocol.
Currently I use sniproxy for this purpose, which works reliably so far. I would like to switch to HAproxy, but I am overwhelmed by the number of configuration options. Can you help me to transfer the sniproxy configuration into a simple/basic haproxy one?

user root

pidfile /var/run/

listen 443 {
   proto tcp
   table hosts
   access_log {
     filename /var/log/sniproxy/access.log
     priority debug

table hosts { proxy_protocol


I managed to solve it myself:

frontend sniproxy
  bind *:443
  mode tcp
  tcp-request inspect-delay 5s
  tcp-request content accept if { req_ssl_hello_type 1 }
  use_backend alias if { req.ssl_sni -m beg alias }
  default_backend fqdn
backend fqdn
  mode tcp
  server host
backend alias
  mode tcp
  server host send-proxy-v2

my issue was that i useed send-proxy instead of send-proxy-v2

1 Like