API tools faq
paste
Guest User

Untitled

a guest
Jan 16th, 2018
92
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.68 KB | None | 0 0
raw download clone embed print report
  1. # sudo docker run -d --name unblocker-ha -v $HOME/unblocker:/usr/local/etc/haproxy -p 443:443/tcp --link unblocker-sni \
  2. # --log-opt max-size=1m --restart=unless-stopped tarot13/haproxy
  3.  
  4. defaults
  5. timeout connect 5s
  6. timeout client 24h
  7. timeout server 24h
  8.  
  9. global
  10. log /dev/log local0
  11.  
  12. frontend ssl
  13. log global
  14. mode tcp
  15. option tcplog
  16. option dontlognull
  17.  
  18. bind 0.0.0.0:443
  19.  
  20. acl whitelist src 0.0.0.0/0 # configure as needed
  21. tcp-request connection reject if !whitelist
  22.  
  23. tcp-request inspect-delay 3s
  24. tcp-request content accept if { req.ssl_hello_type 1 }
  25.  
  26. default_backend sniproxy
  27.  
  28. backend sniproxy
  29. mode tcp
  30. server sni unblocker-sni:443
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!