Skip to content
Snippets Groups Projects
Commit 9408d279 authored by jurgenhaas's avatar jurgenhaas
Browse files

Support multiple IPs for SSL in HaProxy

parent 6f87f4f5
Branches
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
tasks/configure.yml
+ 1
1
View file @ 9408d279
...@@ -2,7 +2,7 @@ ...@@ -2,7 +2,7 @@
# file: roles/haproxy/tasks/configure.yml # file: roles/haproxy/tasks/configure.yml
- name: "Proxy | Install SSL certificates" - name: "Proxy | Install SSL certificates"
copy: src={{inventory_dir}}/files/ssl/{{item}} copy: src={{inventory_dir}}/files/ssl/{{item.file}}
dest=/etc/haproxy/certs dest=/etc/haproxy/certs
with_items: '{{ proxy_certificates }}' with_items: '{{ proxy_certificates }}'
notify: 'Proxy | Restart HAProxy' notify: 'Proxy | Restart HAProxy'
......
templates/haproxy_cfg
+ 1
1
View file @ 9408d279
...@@ -64,7 +64,7 @@ frontend http-in ...@@ -64,7 +64,7 @@ frontend http-in
{% for cert in proxy_certificates %} {% for cert in proxy_certificates %}
frontend https-in frontend https-in
bind :443 ssl crt /etc/haproxy/certs/{{ cert }} no-sslv3 bind {{ cert.ip }}:443 ssl crt /etc/haproxy/certs/{{ cert.file }} no-sslv3
acl blockedip src -i -f /etc/haproxy/blacklist acl blockedip src -i -f /etc/haproxy/blacklist
http-request deny if blockedip http-request deny if blockedip
{% for host in groups['all'] %} {% for host in groups['all'] %}
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment