bingen
/
rpi_docker_home_server
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
78 Revīzijas
6 Atzari
Koks: 79b51cfbc2
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '79b51cfbc2'
${ noResults }
rpi_docker_home_server/images/haproxy/haproxy.cfg

76 rindas
2.2KB
Neapstrādāts Vainot Vēsture 

  1. global

  2.     maxconn 4096

  3.     #tune.ssl.default-dh-param 2048

  4. 

  5. defaults

  6.     mode http

  7.     timeout connect 5000ms

  8.     timeout client 50000ms

  9.     timeout server 50000ms

  10.     #log global

  11.     #log 127.0.0.1 local0 debug

  12.     #option tcplog

  13. 

  14. # https://www.haproxy.com/blog/how-to-get-ssl-with-haproxy-getting-rid-of-stunnel-stud-nginx-or-pound/

  15. frontend https-in

  16.     mode http

  17.     #bind *:443 ssl crt /etc/letsencrypt/haproxy/${NEXTCLOUD_URL}.pem crt /etc/letsencrypt/haproxy/${GOGS_URL}.pem

  18.     bind *:443 ssl ${HAPROXY_CERTS}

  19. 

  20.     acl letsencrypt-acl path_beg /.well-known/acme-challenge/

  21.     #acl nextcloud-acl ssl_fc_sni ${NEXTCLOUD_URL}

  22.     #acl gogs-acl ssl_fc_sni ${GOGS_URL}

  23.     acl nextcloud-acl ssl_fc_sni_reg ^${NEXTCLOUD_SERVER_NAME}\.

  24.     acl gogs-acl ssl_fc_sni_reg ^${GOGS_SERVER_NAME}\.

  25. 

  26.     use_backend letsencrypt-backend if letsencrypt-acl

  27.     use_backend nextcloud if nextcloud-acl

  28.     use_backend gogs if gogs-acl

  29. 

  30.     default_backend nextcloud

  31. 

  32. backend nextcloud

  33.     # http://cbonte.github.io/haproxy-dconv/1.5/configuration.html#option%20http-server-close

  34.     #option http-server-close

  35.     #option forwardfor

  36. 

  37.     #redirect http to https

  38.     #redirect scheme https if !{ ssl_fc }

  39. 

  40.     server nextcloud nextcloud:443 maxconn 32 check ssl verify none

  41. 

  42. backend gogs

  43.     #redirect http to https

  44.     #redirect scheme https if !{ ssl_fc }

  45. 

  46.     server gogs gogs:2443 maxconn 32 check ssl verify none

  47. 

  48. frontend http-in

  49.     bind *:80

  50.     acl letsencrypt-acl path_beg /.well-known/acme-challenge/

  51.     #acl is_nextcloud hdr_end(host) -i ${NEXTCLOUD_URL}

  52.     #acl is_gogs hdr_end(host) -i ${GOGS_URL}

  53.     acl is_nextcloud hdr_reg(host) ^${NEXTCLOUD_SERVER_NAME}\.

  54.     acl is_gogs hdr_reg(host) ^${GOGS_SERVER_NAME}\.

  55. 

  56.     use_backend letsencrypt-backend if letsencrypt-acl

  57.     use_backend nextcloud-insecure if is_nextcloud

  58.     use_backend gogs-insecure if is_gogs

  59.     default_backend pihole-insecure

  60. 

  61. backend nextcloud-insecure

  62.     server nextcloud nextcloud:80 maxconn 32

  63. 

  64. backend gogs-insecure

  65.     server gogs gogs:2080 maxconn 32

  66. 

  67. backend pihole-insecure

  68.     server pihole pihole:80 maxconn 32

  69. 

  70. # LE Backend

  71. backend letsencrypt-backend

  72.     server letsencrypt 127.0.0.1:8888

  73. 

  74. #listen admin

  75. #    bind 127.0.0.1:8080

  76. #        stats enable