Hi,
In our kubernetes environment, we have dynamic backend services/pods (servers)
and looking for a way in HAProxy config to resolve it through DNS resolver
config by using SNI- FQDN. Attempted below config, which parse fails due to
'%[req.ssl_sni]' in 'server' entry. Appreciate your inputs on how this could
be achieved.
defaults
log global
timeout client 50s
timeout client-fin 50s
timeout connect 5s
timeout server 10s
timeout tunnel 50s
resolvers dns
nameserver private-0 192.0.2.1:53
hold valid 1s
listen tcp-0_0_0_0-443
bind *:443
mode tcp
tcp-request inspect-delay 5s
tcp-request content accept if { req_ssl_hello_type 1 }
server services %[req.ssl_sni]:443 check resolvers dns resolve-prefer ipv4
check
thanks,
raj
+918067153382
