Hi, > Here's what I'm doing... I have 2 https services in haproxy. One on the > standard 443 port redirecting to one server. Another one on port 81 which > redirects to 443 on a different server.
I don't understand your configuration at all. You cannot do anything at layer 7 when you are in tcp mode and forwarding HTTPS sessions, this includes cookies, redirects and headers (like X-Forwarded-Proto). Who is supposed to do that redirect? Your backend? As haproxy doesn't see neither HTTP headers nor payload when passing SSL encrypted session to the backend, it cannot cause PHP files to get downloaded instead of being processed - this is something you need to verify on your backend. I would suggest you simplify your configuration and verify each piece of your chain. Regards, Lukas
