148 lines
3.1 KiB
INI
148 lines
3.1 KiB
INI
global
|
|
maxconn 32768
|
|
user haproxy
|
|
group haproxy
|
|
daemon
|
|
tune.bufsize 32768
|
|
tune.ssl.default-dh-param 2048
|
|
ssl-default-bind-ciphersuites TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256
|
|
ssl-default-bind-options prefer-client-ciphers no-tls-tickets
|
|
ssl-default-bind-options ssl-min-ver TLSv1.2
|
|
ssl-default-server-ciphersuites TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256
|
|
ssl-default-server-options no-tls-tickets
|
|
|
|
defaults
|
|
log global
|
|
mode http
|
|
option log-health-checks
|
|
option log-separate-errors
|
|
option dontlog-normal
|
|
option dontlognull
|
|
option httplog
|
|
option socket-stats
|
|
retries 3
|
|
option redispatch
|
|
maxconn 10000
|
|
timeout connect 5s
|
|
timeout client 50s
|
|
timeout server 450s
|
|
timeout tunnel 3600s
|
|
timeout http-keep-alive 1s
|
|
timeout http-request 15s
|
|
timeout queue 30s
|
|
timeout tarpit 60s
|
|
default-server inter 3s rise 2 fall 3
|
|
|
|
listen stats
|
|
bind 0.0.0.0:9090
|
|
stats enable
|
|
stats uri /
|
|
stats refresh 5s
|
|
|
|
frontend birb
|
|
bind 0.0.0.0:80
|
|
mode http
|
|
use_backend birb
|
|
|
|
backend birb
|
|
balance leastconn
|
|
mode http
|
|
http-request set-header Host "birb.k8s.kmlabz.com"
|
|
compression algo gzip
|
|
server cloud lb-1.kmlabz.com:443 check ssl verify none
|
|
|
|
frontend ursim
|
|
bind 0.0.0.0:81
|
|
mode http
|
|
use_backend ursim
|
|
|
|
backend ursim
|
|
balance leastconn
|
|
mode http
|
|
http-request set-header Host "ursim.k8s.kmlabz.com"
|
|
compression algo gzip
|
|
server cloud lb-1.kmlabz.com:443 check ssl verify none
|
|
|
|
frontend birb-vke
|
|
bind 0.0.0.0:82
|
|
mode http
|
|
use_backend birb-vke
|
|
|
|
backend birb-vke
|
|
balance leastconn
|
|
mode http
|
|
http-request set-header Host "vkeegy.birbnetes"
|
|
server master 192.168.122.2:31080 check
|
|
server worker1 192.168.122.3:31080 check
|
|
server worker2 192.168.122.4:31080 check
|
|
|
|
frontend birb-edge
|
|
bind 0.0.0.0:83
|
|
mode http
|
|
use_backend birb-edge
|
|
|
|
backend birb-edge
|
|
balance leastconn
|
|
mode http
|
|
server edge 192.168.36.5:80 check
|
|
|
|
listen mqtt
|
|
bind *:1883
|
|
mode tcp
|
|
option clitcpka
|
|
timeout client 3h
|
|
timeout server 3h
|
|
option tcplog
|
|
balance leastconn
|
|
server worker1 lb-1.kmlabz.com:8883 check ssl verify none
|
|
|
|
listen mqtt-vke
|
|
bind *:1884
|
|
mode tcp
|
|
option clitcpka
|
|
timeout client 3h
|
|
timeout server 3h
|
|
option tcplog
|
|
balance leastconn
|
|
server worker1 192.168.122.3:30007 check
|
|
|
|
listen mqtt-edge
|
|
bind *:1885
|
|
mode tcp
|
|
option clitcpka
|
|
timeout client 3h
|
|
timeout server 3h
|
|
option tcplog
|
|
balance leastconn
|
|
server edge 192.168.36.5:1883 check
|
|
|
|
listen amqp-vke
|
|
bind *:5672
|
|
mode tcp
|
|
option clitcpka
|
|
timeout client 3h
|
|
timeout server 3h
|
|
option tcplog
|
|
balance leastconn
|
|
server master 192.168.122.2:32551 check
|
|
|
|
listen psql-vke
|
|
bind *:5432
|
|
mode tcp
|
|
option clitcpka
|
|
timeout client 3h
|
|
timeout server 3h
|
|
option tcplog
|
|
balance leastconn
|
|
server master 192.168.122.2:32128 check
|
|
|
|
frontend input-mix-from-edge
|
|
bind 0.0.0.0:84
|
|
mode http
|
|
use_backend input-mix-from-edge
|
|
|
|
backend input-mix-from-edge
|
|
balance leastconn
|
|
mode http
|
|
server master 192.168.36.5:81 check
|