Letsencrypt and Floating IP over HAProxy problem

October 5, 2018 1.1k

Networking Load Balancing

By:

bunal

Hi,

We have problem with challenge on Floating IP’s. Any help would be appreciated

Here are more info about it.

Server with HAProxy using acmetool listing on 402 as proxy. Both Public IP and Floating IP are assigned to HAProxy. On HAProxy request is proxied to 402 with acl (path_beg /.well-known/acme-challenge/ )

Public IP: 10.10.10.10
Floating IP: 20.20.20.20 (with anchor IP of 3.3.3.3)

domainA.com pointed to Public IP
domainB.com pointed to Floating IP

Tests:

Both domainA.com and domainB.com is accessible on 80 and HAProxy proxies these to NGINX. So both domain is served over 80 with success.

domainA (on Public IP) SSL requests are signed with SUCCESS

domainB (on Floating IP) SSL requests are signed with FAILURE

Thanks

1 comment

jasonjpeters October 7, 2018
Report
I always have issue with the auto acme tools for HAProxy and NGINX, my solution has been to skip the auto tools and use the manual webroot / certbot extension as if it were behind a proxy.

https://www.digitalocean.com/community/tutorials/how-to-secure-haproxy-with-let-s-encrypt-on-ubuntu-14-04

How To Secure HAProxy with Let's Encrypt on Ubuntu 14.04
by Mitchell Anicas
In this tutorial, we will show you how to use Let's Encrypt to obtain a free SSL certificate and use it with HAProxy on Ubuntu 14.04. We will also show you how to automatically renew your SSL certificate.

Be the first one to answer this question.

Share

Share your Question

Letsencrypt and Floating IP over HAProxy problem

Leave a Comment

Related

question

Share transfer bandwidth because only one HAProxy droplet has high WAN traffic.

question

How to assign a floating IP to a Digital Oceans Load Balancer?

question

One Load Balancer Per Domain?

question

Private network isolated communication between Load balancer and droplet

Almost there!