File: haproxy-proxyproto-v1.cfg

package info (click to toggle)
ocserv 1.3.0-3
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 6,924 kB
  • sloc: ansic: 46,747; sh: 12,630; makefile: 412; xml: 29
file content (32 lines) | stat: -rw-r--r-- 628 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
 
global
	user haproxy
	group haproxy
	#daemon

	# Default SSL material locations
	#ca-base /etc/ssl/certs
	#crt-base /etc/ssl/private

	ssl-default-bind-ciphers kEECDH+aRSA+AES:kRSA+AES:+AES256:RC4-SHA:!kEDH:!LOW:!EXP:!MD5:!aNULL:!eNULL


defaults
	log	global
	mode	http
	option	dontlognull
        timeout connect 5000
        timeout client  50000
        timeout server  50000

frontend ssl
	mode tcp
	bind *:@HAPORT@
	tcp-request inspect-delay 5s
	tcp-request content accept if { req.ssl_hello_type 1 }

use_backend ocserv

backend ocserv
	mode tcp
#	option ssl-hello-chk
	server server-vpn @ADDRESS@:@PORT@ check send-proxy