Letsencrypt and Floating IP over HAProxy problem

October 5, 2018 831

Load Balancing Networking

By:

bunal

Hi,

We have problem with challenge on Floating IP’s. Any help would be appreciated

Here are more info about it.

Server with HAProxy using acmetool listing on 402 as proxy. Both Public IP and Floating IP are assigned to HAProxy. On HAProxy request is proxied to 402 with acl (path_beg /.well-known/acme-challenge/ )

Public IP: 10.10.10.10
Floating IP: 20.20.20.20 (with anchor IP of 3.3.3.3)

domainA.com pointed to Public IP
domainB.com pointed to Floating IP

Tests:

Both domainA.com and domainB.com is accessible on 80 and HAProxy proxies these to NGINX. So both domain is served over 80 with success.

domainA (on Public IP) SSL requests are signed with SUCCESS

domainB (on Floating IP) SSL requests are signed with FAILURE

Thanks

1 comment

jasonjpeters October 7, 2018
I always have issue with the auto acme tools for HAProxy and NGINX, my solution has been to skip the auto tools and use the manual webroot / certbot extension as if it were behind a proxy.

https://www.digitalocean.com/community/tutorials/how-to-secure-haproxy-with-let-s-encrypt-on-ubuntu-14-04

How To Secure HAProxy with Let's Encrypt on Ubuntu 14.04
by Mitchell Anicas
In this tutorial, we will show you how to use Let's Encrypt to obtain a free SSL certificate and use it with HAProxy on Ubuntu 14.04. We will also show you how to automatically renew your SSL certificate.

Share

Share your Question

Letsencrypt and Floating IP over HAProxy problem

Leave a Comment

Related Questions

Almost there!