I've made some progress. I configured ha-proxy in my small personal laboratory.Listening to 0.0.0.0:443 and calling IP-LAN:8080 Now if I type https://MyDomain.TLD/guacamole on a PC on the Internet, the Guacamole login page appears. However, I still have doubts. I now call the service with HTTPS and see the padlock marking the certificate with Let's Encrypt.However, I would like there to be the redirect from 80 to 443, but I think this is a problem with how the certificate is generated in the firewall. Furthermore, I didn't understand if I should also install the certificate on the PC on which guacamole runs.I generated a certificate for *.mydomain.tld and therefore it is also valid for the PC, but I don't know how to bring the certificate here. If I solve it I would have access to Guacamole via HTTPS also from the LAN and not just from the Internet. However, this is also not a HA Proxy problem.
Instead, I have other small HA Proxy problems, but at this point it would be more correct to open a separate post.
