ny bosun haproxy config

## gistfile1.txt
global
  chroot  /var/lib/haproxy
  daemon
  group  haproxy
  log  127.0.0.1 local0
  maxconn  4000
  pidfile  /var/run/haproxy.pid
  stats  socket /var/lib/haproxy/stats
  user  haproxy

defaults
  balance  roundrobin
  log  global
  mode  http
  option  allbackups
  option  forceclose
  option  httpchk GET /
  timeout  connect 15s
  timeout  client 60s
  timeout  server 600s
  timeout  queue 10s

frontend tsdb
  bind *:80
  acl path_get path -m beg /api/query
  acl path_put path -m beg /api/put
  acl path_put path -m beg /api/metadata/put
  acl path_put path -m beg /api/count
  default_backend bosun
  option httplog
  stats enable
  stats uri /haproxy
  use_backend tsdb_read if path_get
  use_backend tsdb_write if path_put

backend bosun
  server ny-bosun01 ny-bosun01:8080

backend tsdb_read
  server ny-tsdb01 ny-tsdb01:4242 check
  server ny-tsdb02 ny-tsdb02:4242 check
  server ny-tsdb03 ny-tsdb03:4242 check backup

backend tsdb_write
  # A bunch of ACLs to make sure we don't get writes accidently from dev machines, vpn, etc
  acl allowed src ....
  acl blocked src ....
  http-request deny if blocked
  http-request deny unless allowed
  server ny-tsdb03 ny-tsdb03:5252 check
  server ny-tsdb01 ny-tsdb01:5252 check backup
  server ny-tsdb02 ny-tsdb02:5252 check backup
	global
	chroot /var/lib/haproxy
	daemon
	group haproxy
	log 127.0.0.1 local0
	maxconn 4000
	pidfile /var/run/haproxy.pid
	stats socket /var/lib/haproxy/stats
	user haproxy

	defaults
	balance roundrobin
	log global
	mode http
	option allbackups
	option forceclose
	option httpchk GET /
	timeout connect 15s
	timeout client 60s
	timeout server 600s
	timeout queue 10s

	frontend tsdb
	bind *:80
	acl path_get path -m beg /api/query
	acl path_put path -m beg /api/put
	acl path_put path -m beg /api/metadata/put
	acl path_put path -m beg /api/count
	default_backend bosun
	option httplog
	stats enable
	stats uri /haproxy
	use_backend tsdb_read if path_get
	use_backend tsdb_write if path_put

	backend bosun
	server ny-bosun01 ny-bosun01:8080

	backend tsdb_read
	server ny-tsdb01 ny-tsdb01:4242 check
	server ny-tsdb02 ny-tsdb02:4242 check
	server ny-tsdb03 ny-tsdb03:4242 check backup

	backend tsdb_write
	# A bunch of ACLs to make sure we don't get writes accidently from dev machines, vpn, etc
	acl allowed src ....
	acl blocked src ....
	http-request deny if blocked
	http-request deny unless allowed
	server ny-tsdb03 ny-tsdb03:5252 check
	server ny-tsdb01 ny-tsdb01:5252 check backup
	server ny-tsdb02 ny-tsdb02:5252 check backup