wok-current view haproxy/stuff/haproxy.cfg @ rev 25788
Mass update to fix build with gcc10 and up others packages
| author | Stanislas Leduc <shann@slitaz.org> |
|---|---|
| date | Tue Sep 30 07:43:04 2025 +0000 (3 weeks ago) |
| parents | 5926178cd6fa |
| children |
line source
1 global
2 maxconn 20000
3 lua-load /etc/haproxy/modules/acme-webroot.lua
4 log 127.0.0.1 local0
5 user haproxy
6 group haproxy
7 chroot /usr/share/haproxy
8 pidfile /run/haproxy.pid
9 daemon
11 tune.ssl.default-dh-param 4096
12 ssl-default-bind-ciphers ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
13 ssl-default-bind-options no-sslv3 no-tlsv10 no-tlsv11 no-tls-tickets
15 frontend main
16 bind 127.0.0.1:80
17 mode http
18 log global
19 option httplog
20 option dontlognull
21 option http_proxy
22 option forwardfor except 127.0.0.0/8
23 maxconn 8000
24 timeout client 30s
26 acl url_acme_http01 path_beg /.well-known/acme-challenge/
27 http-request use-service lua.acme-http01 if METH_GET url_acme_http01
29 acl url_static path_beg -i /static /images /javascript /stylesheets
30 acl url_static path_end -i .jpg .gif .png .css .js
32 use_backend static if url_static
33 default_backend app
35 #frontend main-ssl
36 # bind 127.0.0.1:443 ssl crt /etc/haproxy/ssl
37 # mode http
39 backend static
40 mode http
41 balance roundrobin
42 timeout connect 5s
43 timeout server 5s
44 server static 127.0.0.1:4331 check
46 backend app
47 mode http
48 balance roundrobin
49 timeout connect 5s
50 timeout server 30s
51 timeout queue 30s
52 server app1 127.0.0.1:5001 check
53 server app2 127.0.0.1:5002 check
54 server app3 127.0.0.1:5003 check
55 server app4 127.0.0.1:5004 check