Http-request set-header X-Forwarded-Proto https if httpsĪcl speed var(txn.txnhost) -m str -i Īcl auth var(txn.txnhost) -m str -i Īcl jellyfin var(txn.txnhost) -m str -i Īcl aclcrt_FrontEndProxy var(txn.txnhost) -m reg -i ^speed\.manjot\.net(:()i\"" combined Http-request set-header X-Forwarded-Proto http if !https Server-state-file /tmp/haproxy_server_state Stats socket /tmp/haproxy.socket level admin expose-fd listeners Thanks, # Automaticaly generated, dont edit manually. I am sorry for the nooby aproach to my question, i have to start from the begining i surpose.I am running haproxy -> (192.168.80.90) on pfsense -> (192.168.80.1), In frontend I have checked the “Use “forwardfor” option.” But instead haproxy forwards the 192.168.80.1 address, instead of the clients ip. As i remember, one has to set up a dns rebind(?) for this, how do i manage that?
My services do have self signed certs but I want them to use my generated LE certs for every connection, inside and outside my network.
Ports 80 and 443 are allowed from WAN to This Firewall(self), is this correct? I arlready have my certs and Backends configured, though im unsure, whether they (backends) are correct.
I am unable to acomplish this with HAProxy, as i find too many and different approaches to this which either dont fit my purpose or dont work.Ĭan someone give me a rundown of the things i have to set up and how i have to set them up? After that i figured, why not use the top level FW for this instead of a container on the same hardware.
I have installed ACME for LE certs and HAProxy for redirecting, dyndns is also set up.īefore i had a pfsense, i was able to use nginx for this task in a container aswell, though after installing pfsense in my network ive been confronted with the dns rebind attack error on all but one website. I have a host running docker behind my pfsense, there are multiple containers which i want to "publish" to the internet with SSL-Certs and their own (sub)domain. I need some advice, as I am slowy in despair configuring my pfsense.
0 kommentar(er)
