Reputation: 1175
setting up haproxy to listen to ssl
I followed the instructions at https://www.digitalocean.com/community/tutorials/how-to-implement-ssl-termination-with-haproxy-on-ubuntu-14-04 to setup haproxy to listen to ssl.
However when i try to hit any request through https it doesn't seem to be working, i basically get a ERR_CONNECTION_REFUSED.
I started haproxy by outputting all the operations into nohup. I tried looking into nohup and i dont seem to be getting any info there when i hit the request.
Basically this is the config that i added:
frontend https
bind *:443 ssl crt /etc/ssl/private/{domainname.com}.pem
reqadd X-Forwarded-Proto:\ https
default_backend default
While generating the certificate i have the same domainname.com as well.
Is there any other way to find out why it doesnt seem to work.
Upvotes: 0
Views: 1160
Answers (1)
Reputation: 28
You can use "openssl" to verify the certificate response:
echo | openssl s_client -showcerts -connect yourdomain:443
or try "curl":
curl -v -o /dev/null https://yourdomain
check if your haproxy logging is enabled and correct, e.g.:
global
log 127.0.0.1 local0
defaults
log global
Upvotes: 1
Related Questions
- HAproxy SSL handshake failure
- Using Haproxy to proxy to a secure site
- HAProxy http check on for ssl?
- Haproxy with SSL doesn't works
- setting up ssl on haproxy
- HAProxy 1.5-dev19 Unable to load SSL certificate
- HAProxy and SSL Certification
- HAProxy doesn't recognize SSL
- Haproxy 1.4 connecting to an https backend servers
- SSL over HAProxy issue