HAproxy site failing login -

-

i have security cam application. ic realtime nvr-604v. nvr has web interface http on port 8888. not trying load balance anything. have number of offices these , using haproxy route based on url specific nvr , use ssl termination on haproxy backend uing port 8888 unencrypted.

routing, ssl termination, , https redirect work.

i can't login. login failed web application when routing through haproxy, going direct ip works fine.

any ideas? 

global         log /dev/log    local0         log /dev/log    local1 notice         chroot /var/lib/haproxy         stats socket /run/haproxy/admin.sock mode 660 level admin         stats timeout 30s         daemon         maxconn 2048      # default ssl material locations     tune.ssl.default-dh-param 2048     ca-base /etc/ssl/certs     crt-base /etc/ssl/private      ssl-default-bind-ciphers ecdh+aesgcm:dh+aesgcm:ecdh+aes256:dh+aes256:ecdh+aes128:dh+aes:ecdh+3des:dh+3des:rsa+aesgcm:rsa+aes:rsa+3des:!anull:!md5:!dss     ssl-default-bind-options no-sslv3  defaults         log     global         mode    http         option  httplog         option  dontlognull         option http-server-close         timeout connect 5000         timeout client  50000         timeout server  50000         errorfile 400 /etc/haproxy/errors/400.http         errorfile 403 /etc/haproxy/errors/403.http         errorfile 408 /etc/haproxy/errors/408.http         errorfile 500 /etc/haproxy/errors/500.http         errorfile 502 /etc/haproxy/errors/502.http         errorfile 503 /etc/haproxy/errors/503.http         errorfile 504 /etc/haproxy/errors/504.http  frontend sec-cam         bind 172.16.250.92:80         bind 172.16.250.92:443 ssl crt /etc/ssl/mckinleyirvin.com/star_mckinleyirvin_com.pem         acl secure dst_port eq 443         reqadd x-forwarded-proto:\ http         rspadd strict-transport-security:\ max-age=31536000;\ includesubdomains;\ preload         rsprep ^set-cookie:\ (.*) set-cookie:\ \1;\ secure if secure         redirect scheme https if !{ ssl_fc }         log global         option tcplog         acl is_por hdr(host) -i por-sec-cam.mckinleyirvin.com         acl is_sea hdr(host) -i sea-sec-cam.mckinleyirvin.com         acl is_van hdr(host) -i van-sec-cam.mckinleyirvin.com         acl is_tac hdr(host) -i tac-sec-cam.mckinleyirvin.com         acl is_evt hdr(host) -i evt-sec-cam.mckinleyirvin.com         use_backend sec-cam-portland if is_por         use_backend sec-cam-seattle if is_sea         use_backend sec-cam-vancouver if is_van         use_backend sec-cam-everett if is_evt         use_backend sec-cam-tacoma if is_tac  backend sec-cam-portland         http-request set-header x-forwarded-port %[dst_port]         http-request add-header x-forwarded-proto https if { ssl_fc }         server sec-cam-portland 172.16.30.200:8888  backend sec-cam-vancouver         http-request set-header x-forwarded-port %[dst_port]         http-request add-header x-forwarded-proto https if { ssl_fc }         server sec-cam-vancouver 172.16.40.200:8888  backend sec-cam-seattle         http-request set-header x-forwarded-port %[dst_port]         http-request add-header x-forwarded-proto https if { ssl_fc }         server sec-cam-seattle 172.16.10.200:8888  backend sec-cam-tacoma         http-request set-header x-forwarded-port %[dst_port]         http-request add-header x-forwarded-proto https if { ssl_fc }         server sec-cam-tacoma 172.16.20.200:8888  backend sec-cam-everett         http-request set-header x-forwarded-port %[dst_port]         http-request add-header x-forwarded-proto https if { ssl_fc }         server sec-cam-everett 172.16.50.200:8888


Comments

Post a Comment

Popular posts from this blog

php - How to display all orders for a single product showing the most recent first? Woocommerce -

-
i have password protected page on frontend. on page, want display full list of purchases associated single woocommerce product id. option 1: i've looked through woocommerce docs , , found: wc_cli_order , list_( $args, $assoc_args ) function lists orders. presumably, orders can filtered product id [--=] filter orders based on order property. line item fields (numeric array, started index zero): line_items.0.product_id option 2: i found article , based on customer id. i've modified code based on guesses meta_key , meta_value. $customer_orders = get_posts( array( 'numberposts' => -1, 'meta_key' => '_product', 'meta_value' => get_product_id(), 'post_type' => wc_get_order_types(), 'post_status' => array_keys( wc_get_order_statuses() ), ) ); how display orders single product showing recent order first? here solution put based on these articles: http://www.w...
Read more

asp.net - How to correctly use QUERY_STRING in ISAPI rewrite? -

-
i'm having difficult time , hope guys can help. using helicon isapi rewrite version 3.1.0.104 on our iis server. edit http.conf file , have tried , still fail. this trying do: redirect url: https://www.domain.com/switch-by-version?version=2.8.5.2594 to: https://test.domain.com/load/load.aspx?tver=2.8.5.2594 the version number @ end source url change, , need target url have same version number @ end of url example above shows. i tried following not work: rewritecond %{query_string} ^version=(\d\d?)\.(\d\d?)\.(\d\d?)\.(.*)$ [nc] rewriterule ^/switch-by-version(.*)$ https://test.domain.com/load/load.aspx?tver=%1 [r=307,nc,l] any appreciated! thanks. if it's running in equivalent context of .htaccess , rule shouldn't start / . here's simpler version: rewritecond %{query_string} ^version=(\d+\.\d+\.\d+(?:\..+)?)$ [nc] rewriterule ^switch-by-version/?$ https://test.domain.com/load/load.aspx?tver=%1 [r=307,nc,l]
Read more

angularjs - How restrict admin panel using in backend laravel and admin panel on angular? -

-
https://scotch.io/tutorials/token-based-authentication-for-angularjs-and-laravel-apps following tutorials, try write authentication restrict admin panel, didn't understood how can that. this admin panel, admin panel don't want show , request database unauthenticated users. my laravel-routes route::get('/admin',function(){ return view('index'); }); route::get('/api/v1/employees/{id?}', 'employees@index'); route::get('/api/v1/users/{id?}', 'employees@users'); route::post('/api/v1/employees', 'employees@store'); route::post('/api/v1/employees/{id}', 'employees@update'); route::delete('/api/v1/employees/{id}', 'employees@destroy'); route::group(['prefix' => 'api'], function() { route::resource('authenticate', 'authenticatecontroller', ['only' => ['index']]); route::post('authenticate', 'authentic...
Read more