This patch implement the ssl bind configuration per certificat.
It’s for 1.8dev.

for example:

haproxy.cfg:
    bind :443 ssl strict-sni crt-list /etc/haproxy/crtlist.cfg

crtlist.cfg:
mycert.pem  [alpn h2,http/1.1]  h2.mydom.net
mycert.pem  [verify required ca-file ca-admin.pem]   admin.mydom.net
mycert.pem         # legacy ssl for all others SNI find in CN/SAN in mycert.pem
othercert.pem   [alpn http/1.1]


Attachment: 0001-MAJOR-ssl-bind-configuration-per-certificat.patch
Description: Binary data

Reply via email to