what i am Trying to archive is to use haproxy 2.0.10 as SSL Proxy for an MS-SQL Server. The Connection to the backend has to be established without SSL.
I am usind the following (simple) config:
listen 30-MSSQL_tcp
bind 10.40.0.11:1433 ssl crt /etc/pki/bundle/wildcard.domain.tld.bundle.pem
mode tcp
option tcplog
option tcpka
server 11.22.33.44:1433 inter 1s rise 1 fall 1
It works when i disable SSL. Has anyone ever archived a Setup like that. Or is it just impossible?
I have yet to become familiar with the all in on listen vip. I dont see any glaring config issues. Have you tried splitting it up into a frontend and backend section? Im not sure if it performs any different but suggesting an alternative.
Is the back end healthy? I know when i dont have a check it will not not the servers are up in my stats page. I added the check below…