Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- global
- log /dev/log local0
- log /dev/log local1 notice
- chroot /var/lib/haproxy
- user haproxy
- group haproxy
- daemon
- defaults
- log global
- mode tcp
- option tcplog
- option dontlognull
- maxconn 2000
- timeout connect 5000
- timeout client 500000
- timeout server 500000
- frontend ssl
- mode tcp
- bind <host IP>:443
- tcp-request inspect-delay 3s
- tcp-request content accept if { req.ssl_hello_type 1 }
- acl ssh_payload payload(0,7) -m bin 5353482d322e30
- use_backend ocserv if { req.ssl_hello_type 1 }
- use_backend openssh if ssh_payload
- use_backend openssh if !{ req.ssl_hello_type 1 } { req.len 0 }
- backend openssh
- mode tcp
- timeout server 3h
- server openssh 127.0.0.1:22
- backend ocserv
- mode tcp
- timeout server 24h
- server sslvpn 127.0.0.1:4433
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement