2019-12-08 16:47:28 +00:00
|
|
|
global
|
2020-01-26 18:17:55 +00:00
|
|
|
log /dev/log local0
|
|
|
|
|
log /dev/log local1 notice
|
|
|
|
|
chroot /var/lib/haproxy
|
|
|
|
|
stats socket /run/haproxy/admin.sock mode 660 level admin
|
|
|
|
|
stats timeout 30s
|
|
|
|
|
user haproxy
|
|
|
|
|
group haproxy
|
|
|
|
|
daemon
|
|
|
|
|
maxconn 10000
|
2019-12-08 16:47:28 +00:00
|
|
|
|
|
|
|
|
defaults
|
2020-01-26 18:17:55 +00:00
|
|
|
log global
|
|
|
|
|
mode http
|
|
|
|
|
option httplog
|
|
|
|
|
option dontlognull
|
|
|
|
|
timeout connect 10000
|
|
|
|
|
timeout client 50000
|
|
|
|
|
timeout server 50000
|
|
|
|
|
errorfile 400 /etc/haproxy/errors/400.http
|
|
|
|
|
errorfile 403 /etc/haproxy/errors/403.http
|
|
|
|
|
errorfile 408 /etc/haproxy/errors/408.http
|
|
|
|
|
errorfile 500 /etc/haproxy/errors/500.http
|
|
|
|
|
errorfile 502 /etc/haproxy/errors/502.http
|
|
|
|
|
errorfile 503 /etc/haproxy/errors/503.http
|
|
|
|
|
errorfile 504 /etc/haproxy/errors/504.http
|
2019-12-08 16:47:28 +00:00
|
|
|
|
|
|
|
|
listen https
|
2020-01-26 18:17:55 +00:00
|
|
|
bind *:443
|
|
|
|
|
mode tcp
|
|
|
|
|
server default {{ wireguard.clients.intersect.ip }}:443 send-proxy
|
2019-12-08 16:47:28 +00:00
|
|
|
|
|
|
|
|
listen http
|
2020-01-26 18:17:55 +00:00
|
|
|
bind *:80
|
|
|
|
|
stats enable
|
|
|
|
|
stats show-node
|
|
|
|
|
stats uri /haproxy
|
|
|
|
|
stats auth stats:{{ haproxy.stats_pass }}
|
|
|
|
|
server default {{ wireguard.clients.intersect.ip }}:80 check
|
2019-12-08 16:47:28 +00:00
|
|
|
|
2020-01-17 22:56:45 +00:00
|
|
|
{% for port in haproxy.exposed_ports %}
|
2019-12-08 16:47:28 +00:00
|
|
|
|
2020-01-17 22:56:45 +00:00
|
|
|
listen expose_{{ port }}
|
2020-01-26 18:17:55 +00:00
|
|
|
bind *:{{ port }}
|
|
|
|
|
mode tcp
|
|
|
|
|
server default {{ wireguard.clients.intersect.ip }}:{{ port }}
|
2019-12-08 16:47:28 +00:00
|
|
|
|
2020-01-17 22:56:45 +00:00
|
|
|
{% endfor %}
|
