Is there any way to use req_ssl_sni to route to a wildcard subdomains site?
I know i can terminate ssl to inspect the request but i dont want to send
http to the public backends. And decoding for routeing and encoding of the
routed request does not feel right too.
If req_ssl_sni is able to look at the domain, are there any plans to have
at least something like ends-with: like for http requests: hdr_end(host)
=> req_ssl_sni_end ?
Or am i missing any onther options?
frontend https-in
mode tcp
bind :443
tcp-request inspect-delay 5s
tcp-request content accept if { req_ssl_hello_type 1 }
# acl setup ssl
acl match_ssl req_ssl_sni -i dev.mydomain.com *.dev.mydomain.com
use_backend Dev-SSL if match_ssl
backend Dev-SSL
mode tcp
balance roundrobin
option redispatch
option ssl-hello-chk
server MyServer 15.15.15.15:443 weight 10 maxconn 25 check inter 10s
Thanks,
George
--
Mit freundlichen Grüßen
Georg Leciejewski
--
SalesKing GmbH
Tel: +49 (221) 1208955
Fax: +49 (221) 9228617
Mob: +49 (173) 5425588
E-Mail: [email protected]
Holbeinstr. 2
50733 Köln
Geschäftsführer:
Georg Leciejewski, Dipl.Wi.Inf. FH
UStId: DE215422159
Amtsgericht Köln
HRB 44907
