> On Nov 23, 2016, at Nov 23, 2:35 AM, Deepak Shakya <[email protected]> wrote: > > I want to setup haproxy to be able to proxy multiple https applications on > the same https port > > Something like this: > > Client/Browser ---(https)---> haproxy:8443/app1 ---(https)---> > app1-server:8101 (Default) > Client/Browser ---(https)---> haproxy:8443/app2 ---(https)---> > app2-server:8102 > > I was thinking to have SSL Pass-through for the above case and here is my > configuration for the same. > > frontend pmc-fe 0.0.0.0:8443 <http://0.0.0.0:8443/> > mode tcp > option tcplog > default_backend app1-be > > acl app2_acl path_beg /app2/ > use_backend app2-be if app2_acl > > backend app1-be > mode tcp > stick-table type ip size 200k expire 30m > stick on src > server app1-server app1-server:8101 > > backend app2-be > reqrep ^([^\ ]*\ /)app2[/]?(.*) \1\2 > server app2-server app2-server:8102 > > > But, this is not working? Can somebody guide me?
If this is actually your config then SSL is not decrypted at the proxy and there is no way for the app2_acl to ever match. If you want to inspect HTTP content in the proxy, then you must terminate SSL in the proxy too. -Bryan
