Hi, On 02/22/2016 08:54 PM, Nunya DamnedBizniss wrote:
Is SSL Termination supported in TCP Mode?
It certainly should be.
https://www.reddit.com/r/sysadmin/comments/46c1im/issue_configuring_haproxy_frontend_to_active/
Can't see any obvious problems from skimming this. Please run haproxy in debug mode (run haproxy -d in the foreground) to see what haproxy does. You might also want to run openssl s_client to see if you can establish an SSL session as well as monitor the backend to see if any traffic arrives there. If the AD server is stingy with connection logs, maybe you could set up an openldap (slapd) instance as a test backend. Its log levels can be turned up to 11 very easily. Regards, Lukas Erlacher -- Rechnerbetriebsgruppe der Fakultäten Mathematik und Informatik Raum 00.05.042 Tel. 089-289-18258 erlac...@in.tum.de Technische Universität München - Boltzmannstr. 3 - 85748 Garching
smime.p7s
Description: S/MIME Cryptographic Signature
