Is there a way for haproxy to listen to port 443 and perform ssl pass through
via tcp if the hostname matches certain criteria but ssl termination for the
rest?
for example, this is the front end configuration part:
frontend ssl :443
mode tcp
option tcplog
option socket-stats
maxconn 300
# use tcp content accepts to detects ssl client and server hello.
# acl clienthello req_ssl_hello_type 1 -> seems to not work
tcp-request inspect-delay 5s
tcp-request content accept if { req_ssl_hello_type 1 }
use_backend ssl_dev if { req_ssl_sni -i dev.company.com }
use_backend ssl_test if { req_ssl_sni -i test.company.com }
default_backend ssl_termination?
