Skip to content
Snippets Groups Projects
Commit 9408d279 authored by jurgenhaas's avatar jurgenhaas
Browse files

Support multiple IPs for SSL in HaProxy

parent 6f87f4f5
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
tasks/configure.yml
+ 1
1
View file @ 9408d279
......@@ -2,7 +2,7 @@
# file: roles/haproxy/tasks/configure.yml
- name: "Proxy | Install SSL certificates"
copy: src={{inventory_dir}}/files/ssl/{{item}}
copy: src={{inventory_dir}}/files/ssl/{{item.file}}
dest=/etc/haproxy/certs
with_items: '{{ proxy_certificates }}'
notify: 'Proxy | Restart HAProxy'
......
templates/haproxy_cfg
+ 1
1
View file @ 9408d279
......@@ -64,7 +64,7 @@ frontend http-in
{% for cert in proxy_certificates %}
frontend https-in
bind :443 ssl crt /etc/haproxy/certs/{{ cert }} no-sslv3
bind {{ cert.ip }}:443 ssl crt /etc/haproxy/certs/{{ cert.file }} no-sslv3
acl blockedip src -i -f /etc/haproxy/blacklist
http-request deny if blockedip
{% for host in groups['all'] %}
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment