subject:"Firewall and Haproxy"

Re: Firewall and Haproxy

2019-11-19 Thread Baptiste

On Sun, Nov 17, 2019 at 2:41 PM TomK  wrote:

> Hey All,
>
> When adding hosts to a F/W behind a VIP (keepalived for example) to
> which Haproxy is bound, should just the VIP be added to the F/W or would
> all member hosts behind Haproxy need to be added as well?
>
> If all member hosts behind haproxy need to be added, why?
>
> Only reason I can think of adding individual host members is for
> troubleshooting purposes.  Other then that, can't think of a valid
> reason why each member host would connect separately.
>
> --
> Thx,
> TK.
>
>
Hi,

You should just open traffic to ports configured on the VIP in HAProxy.

Baptiste

Firewall and Haproxy

2019-11-17 Thread TomK


Hey All,

When adding hosts to a F/W behind a VIP (keepalived for example) to 
which Haproxy is bound, should just the VIP be added to the F/W or would 
all member hosts behind Haproxy need to be added as well?


If all member hosts behind haproxy need to be added, why?

Only reason I can think of adding individual host members is for 
troubleshooting purposes.  Other then that, can't think of a valid 
reason why each member host would connect separately.


--
Thx,
TK.

Re: Firewall and Haproxy

Firewall and Haproxy

2 matches

Site Navigation

Mail list logo

Footer information