SHARE
TWEET

Untitled

a guest Jul 12th, 2019 73 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. global
  2.         log /dev/log    local0
  3.         log /dev/log    local1 notice
  4.         chroot /var/lib/haproxy
  5.         stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd listeners
  6.         stats timeout 30s        user haproxy
  7.         group haproxy
  8.         daemon
  9.  
  10.         # Default SSL material locations
  11.         ca-base /etc/ssl/certs
  12.         crt-base /etc/ssl/private
  13.  
  14.         # Default ciphers to use on SSL-enabled listening sockets.        
  15.         # For more information, see ciphers(1SSL). This list is from:
  16.         #  https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/
  17.         # An alternative list with additional directives can be obtained from
  18.         #  https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=haproxy
  19.         ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:!aNULL:!MD5:!DSS        ssl-default-bind-options no-sslv3
  20.  
  21. defaults
  22.         log     global
  23.         mode    http        
  24.         option  httplog
  25.         option  dontlognull
  26.         option  forwardfor
  27.         option  http-server-close
  28.         timeout connect 5000
  29.         timeout client  50000
  30.         timeout server  50000
  31.         errorfile 400 /etc/haproxy/errors/400.http
  32.         errorfile 403 /etc/haproxy/errors/403.http
  33.         errorfile 408 /etc/haproxy/errors/408.http
  34.         errorfile 500 /etc/haproxy/errors/500.http
  35.         errorfile 502 /etc/haproxy/errors/502.http
  36.         errorfile 503 /etc/haproxy/errors/503.http
  37.         errorfile 504 /etc/haproxy/errors/504.http
  38.  
  39. frontend http_frontend    bind *:80
  40.     acl web_host1 hdr(host) -i jameswelch.me
  41.  
  42.     use_backend jamesWelch if web_host1
  43.  
  44. backend jamesWelch
  45.     balance leastconn
  46.     http-request set-header X-Client-IP %[src]
  47.     server jamesWelch jamesWelch.lxd:80 check
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top