I have a very simple tcp proxy where the backend is serving SSL encrypted content.
My understanding is that in the config below there is no manipulation of the content passing through; however, some redirects are changing from https to http. If the same request is made while bypassing HAproxy the protocol does not change.
defaults
log global
mode tcp
option tcplog
option dontlognull
timeout connect 5000
timeout client 50000
timeout server 50000
frontend tcp-fe
bind :443
mode tcp
option tcplog
default_backend ingress
backend ingress
mode tcp
server ingress 100.64.1.27:443 check