Si 
(he/him)My own rolled solution:
#selfhosting #VPS #caddyserver #haproxy #letsencrypt #technitiumdns
mastodon.raddemo.hostHow to Install and Configure #HAProxy on Oracle Linux #VPS Servers
This article provides a guide for how to install and configure HAProxy on Oracle Linux VPS servers.
What is HAProxy?
HAProxy (High Availability Proxy) is an open-source software widely used for load balancing, proxying, and high availability in modern IT infrastructure. It is especially popular in web hosting, cloud platforms, and ...
Continued 👉 https://blog.radwebhosting.com/how-to-install-and-configure-haproxy-on-oracle-linux-vps-servers/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #reverseproxy #oraclelinux #loadbalancer #loadbalancing
Rad Web HostingHow to Install and Configure #HAProxy on Oracle Linux #VPS Servers
This article provides a guide for how to install and configure HAProxy on Oracle Linux VPS servers.
What is HAProxy?
HAProxy (High Availability Proxy) is an open-source software widely used for load balancing, proxying, and high availability in modern IT infrastructure. It is especially popular in web hosting, cloud platforms, and ...
Continued 👉 https://blog.radwebhosting.com/how-to-install-and-configure-haproxy-on-oracle-linux-vps-servers/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #loadbalancer #loadbalancing #oraclelinux #reverseproxy
Dantali0n 
Johannes KastlQuestion for the haproxy users:
Does anyone have a working configuration for reverse-proxying HTTPS URLs
- using "mode tcp" (no TLS certificates on the Haproxy) AND
- using the "use_backend" configuration do decide which backend to use based on SNI?
So we have https://foo.example.org and https://bar.example.org, both DNS entries pointing to the haproxy.
use_backend foo if { FOO_CONDITION_GOES_HERE }
use_backend bar if { BAR_CONDITION_GOES_HERE }
default_backend foo
No matter which condition we try, we always fall back to the default backend.
Removing the `default_backend` we get errors for all connection attempts. So clearly the conditions are wrong.
We tried `req_ssl_cni foo.example.org` as the condition inside the curly braces.
We tried `ssl_fc_sni_end foo.example.org`.
We tried `req.ssl_cni foo.example.org`.
We tried with -i and with "-m end".
We tried the complete URL (some.service.foo.example.org) or only the domain.
Any ideas, anyone?
How to Install and Configure #HAProxy on Oracle Linux #VPS Servers
This article provides a guide for how to install and configure HAProxy on Oracle Linux VPS servers.
What is HAProxy?
HAProxy (High Availability Proxy) is an open-source software widely used for load balancing, proxying, and high availability in modern IT infrastructure. It is especially popular in web hosting, cloud platforms, and ...
Continued 👉 https://blog.radwebhosting.com/how-to-install-and-configure-haproxy-on-oracle-linux-vps-servers/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #reverseproxy #loadbalancer #loadbalancing #oraclelinux
AskUbuntuTrying to override haproxy systemd service : [/etc/systemd/system/haproxy.service.d/override.conf:2] Invalid environment assignment, ignoring: - #systemd #services #haproxy
Trying to override haproxy systemd service : [/etc/systemd/system/haproxy.service.d/override.conf:2] Invalid environment assignment, ignoring: -
I'm try to override the haproxy.service Environment line : Environment="CONFIG=/etc/haproxy/haproxy.cfg" "PIDFILE=/run/haproxy.pid" "EXTRAOPTS=-S /run/haproxy-master.sock&q...
devopstalesCilium deprecated external workload? Deploy HAProxy Ingress in DMZ w/ BGP+BIRD. Pod CIDR export, firewalld hardening, AlmaLinux-ready. Secure & tested! 👇
https://devopstales.github.io/kubernetes/k8s-dmz-bgp-external-haproxy/
Kubernetes DMZ Ingress with HAProxy and BGP: External Mode Without Cilium External Workload
Learn how to deploy HAProxy Ingress Controller on AlmaLinux in a DMZ network outside your Kubernetes cluster—without Cilium’s deprecated external workload mode. This guide covers BGP peering with BIRD, Cilium’s Pod CIDR export, firewalld configuration, and production-ready setup for secure ingress traffic isolation.
HabrКак HAProxy принимает решения: ACL, mode и маршрутизация трафика
HAProxy часто появляется в инфраструктуре незаметно. Сначала это просто балансировщик: принял трафик, отправил дальше — всё понятно. Потом появляется второй сервис, третий, routing по домену, path, заголовкам, SNI, а заодно canary и временные исключения. И вот конфиг, который когда-то помещался на один экран, превращается в логическую задачу со звёздочкой. В этот момент почти всегда всплывают ACL. Кто-то использует их осознанно, кто-то — по принципу: нашёл в примере, вроде работает. Рядом с ACL неизбежно стоит mode: tcp или http . Снаружи это выглядит как простая настройка, но на деле — фундаментальное решение, от которого зависит, какие данные HAProxy вообще видит и какие условия способен проверить. Проблема в том, что HAProxy не делает догадок. Он последователен и выполняет конфигурацию ровно так, как она написана. Отсюда и классика жанра: ACL есть, но backend не выбирается; mode вроде http, но заголовки недоступны; routing работает почти всегда, кроме пятницы.
https://habr.com/ru/companies/gnivc/articles/993590/
#haproxy #devops #proxy #прокси #проксирование #девопс #трафик #балансировщик
⚡ Moving from NGINX Ingress? Check out HAProxy for 2× higher throughput & lower CPU usage!
My complete migration guide covers annotation mappings, CRDs, and production-ready configs. Safer, faster, and fully open source!
🔗 https://devopstales.github.io/kubernetes/nginx-to-haproxy-ingress-migration/
#Kubernetes #HAProxy #Ingress #PlatformEngineering
My complete migration guide covers annotation mappings, CRDs, and production-ready configs. Safer, faster, and fully open source!
🔗 https://devopstales.github.io/kubernetes/nginx-to-haproxy-ingress-migration/
#Kubernetes #HAProxy #Ingress #PlatformEngineering
