Skip to content

Instantly share code, notes, and snippets.

@genadipost
Created April 10, 2018 23:50
Show Gist options
  • Save genadipost/6d413bd1f30ad008091af683975a4b09 to your computer and use it in GitHub Desktop.
Save genadipost/6d413bd1f30ad008091af683975a4b09 to your computer and use it in GitHub Desktop.
frontend https-in-7000
mode tcp
bind *:7000
tcp-request inspect-delay 5s
tcp-request content accept if { req_ssl_hello_type 1 }
acl cc req_ssl_sni -i foreman-client.localdomain
acl dd req_ssl_sni -i foreman-internal.localdomain
use_backend client-tcp if cc
use_backend internal if dd
frontend https-in-ui
mode http
bind *:5000 ssl crt /etc/ssl/certs/test-server.hm.local.pem
default_backend client-http
backend client-tcp
mode tcp
balance roundrobin
server foreman1 127.0.0.1:443 check
backend client-http
mode http
balance roundrobin
server foreman1 127.0.0.1:443 check ssl verify none
backend internal
mode tcp
balance roundrobin
server foreman1 127.0.0.1:5000 check
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment