HAProxy send-proxy to Nginx

nginx reverse-proxy haproxy pfsense synology

I am trying to reverse proxy clients to a web server through HAProxy and Nginx with SSL traffic using SNI. With the standard configuration, the web server sees the HAProxy IP and connects. When applying "send-proxy" to the appropriate backend in HAproxy my client browser fails to connect and times out. How can I configure Nginx headers to decipher this and the web server know their IP?


Solution 1:

See NGINX's docs:

http {
    #...
    server {
        listen 80   proxy_protocol;
        listen 443  ssl proxy_protocol;
        #...
    }
}

This allows NGINX to be downstream from an HAProxy transmitting proxy protocol. The link I quoted contains more information on how to log/get the client's IP address.

Related

Azure private endpoints and ACL
Windows 10 non-server edition Remote Shell
iptables: is it possible to spoof NEW packets and make them look like ESTABLISHED packets?
How can I know if one disk faults on RAID 5?
How to check cpu history
Postfix/Fail2ban, Send mail to admin on problems
When process writes to pseudoterminal slave, why it doesn't read what it wrote?
Is it possible to apply any themes to improve the appearance of Evolution?
How to attach new EBS volume to Ubuntu machine on AWS?
How do I set my system to auto-update without user interaction?
Switching mdadm to an external bitmap
Upgrading Ubuntu with encrypted $HOME