Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # sudo docker run -d --name unblocker-ha -v $HOME/unblocker:/usr/local/etc/haproxy -p 443:443/tcp --link unblocker-sni \
- # --log-opt max-size=1m --restart=unless-stopped tarot13/haproxy
- defaults
- timeout connect 5s
- timeout client 24h
- timeout server 24h
- global
- log /dev/log local0
- frontend ssl
- log global
- mode tcp
- option tcplog
- option dontlognull
- bind 0.0.0.0:443
- acl whitelist src 0.0.0.0/0 # configure as needed
- tcp-request connection reject if !whitelist
- tcp-request inspect-delay 3s
- tcp-request content accept if { req.ssl_hello_type 1 }
- default_backend sniproxy
- backend sniproxy
- mode tcp
- server sni unblocker-sni:443
Add Comment
Please, Sign In to add comment