Haproxy nbsrv acl not working

access-control-listhaproxy

The following acl doesn't work for me:

acl no_waf nbsrv(to_waf) lt 1
use_backend back-www if no_waf
default_backend to_waf

I keep getting error 503 (No server is available to handle this request.) instead of being sent to the backend back-www.

Any ideas?

**EDIT, backend to_waf looks like this:

backend to_waf

    option  forwardfor header X-Forwarded-For

    option  httpchk HEAD / HTTP/1.0

    http-check expect status 404

    timeout server 25s

    server  10.30.10.2:9000    10.30.10.2:9000    check

Best Answer

Found it: I was reloading haproxy and there was a error in the config file, for some reason reloading it didn't trigger any error message. When I tried to restart the service I got the error, after fixing it the condition started to work.

Related Solutions

Ssl – HaProxy – Http and SSL pass through config

What are you using to cipher/decipher the SSL traffic before haproxy ? Stunnel, nginx, apache, something else ?

I suspect it might be related to the lack of "option httpclose" on your port 80, but it's not clear to me why it would cause an issue to only a few visitors.

How to configure Amazon ELB ping target for haproxy

Please have a look at this gist. It basically describes/configures what you require:

# Create a monitorable URI which returns a 200 if at least 1 server is up.
# This could be used by Traverse/Nagios to detect if a whole server set is down.
acl servers_down nbsrv(servers) lt 1
monitor-uri /haproxy?monitor
monitor fail if

Best Answer

Related Solutions

Ssl – HaProxy – Http and SSL pass through config

How to configure Amazon ELB ping target for haproxy

Related Topic