Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- global
- log /dev/log local0
- log /dev/log local1 notice
- chroot /var/lib/haproxy
- stats socket /run/haproxy/admin.sock mode 660 level admin
- stats timeout 30s
- daemon
- user haproxy
- group haproxy
- # Default ciphers to use on SSL-enabled listening sockets.
- # For more information, see ciphers(1SSL).
- tune.ssl.default-dh-param 2048
- ssl-default-bind-ciphers LONG LIST OF CIPHERS
- defaults
- log global
- balance leastconn
- mode http
- option httplog
- option dontlognull
- option redispatch
- option http-server-close
- option forwardfor
- option abortonclose
- maxconn 3000
- retries 3
- timeout queue 1m
- timeout connect 10s
- timeout client 5m
- timeout server 5m
- timeout http-request 5s
- timeout http-keep-alive 10s
- timeout check 10s
- frontend www-http
- bind xxx.xxx.xxx.xxx:80
- reqadd X-Forwarded-Proto: http
- redirect scheme https if !{ ssl_fc }
- default_backend wordpress-backend
- frontend www-https
- bind xxx.xxx.xxx.xxx:443 ssl no-sslv3 crt /etc/ssl/private/default.pem crt /etc/ssl/private/
- rspadd Strict-Transport-Security: max-age=15768000
- reqadd X-Forwarded-Proto: https
- default_backend wordpress-backend
- backend wordpress-backend
- option httpchk HEAD /haphealth
- server wordpress-1 xxx.xxx.xxx.xxx:8081 maxconn 10 check
- server wordpress-2 xxx.xxx.xxx.xxx:8081 maxconn 10 check
- server wordpress-3 xxx.xxx.xxx.xxx:8081 maxconn 10 check
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement