doc: update haproxy example

2020-10-30 16:44:23 +01:00 · 2020-10-30 16:44:23 +01:00 · 9ca1bf79dd
parent 00cff45d30
commit 9ca1bf79dd
1 changed files with 12 additions and 10 deletions
--- a/debian/haproxy/haproxy.conf-example.snippet
+++ b/debian/haproxy/haproxy.conf-example.snippet
@ -1,10 +1,12 @@
- frontend https
-    ...
-    bind *:443 ssl crt /etc/ssl/bundles ca-file /usr/local/share/ca-certificates/entrouvert-ca.crt verify optional
-    http-request set-header X-SSL                  %[ssl_fc]
-    http-request set-header X-SSL-Client-Cert      %[ssl_fc_has_crt]
-    http-request set-header X-SSL-Client-Verify    %[ssl_c_verify]
-    http-request set-header X-SSL-Client-SHA1      %[ssl_c_sha1,hex]
-    http-request set-header X-SSL-Client-DN        %{+Q}[ssl_c_s_dn]
-    http-request set-header X-SSL-Client-CN        %{+Q}[ssl_c_s_dn(cn)]
-    http-request set-header X-SSL-Issuer           %{+Q}[ssl_c_i_dn]
+listen journald
+  bind *:19532 ssl crt /etc/ssl/bundles ca-file /usr/local/share/ca-certificates/company-ca.crt verify optional
+  timeout client 5000000
+  timeout server 5000000
+  http-request set-header X-SSL                  %[ssl_fc]
+  http-request set-header X-SSL-Client-Cert      %[ssl_fc_has_crt]
+  http-request set-header X-SSL-Client-Verify    %[ssl_c_verify]
+  http-request set-header X-SSL-Client-SHA1      %[ssl_c_sha1,hex]
+  http-request set-header X-SSL-Client-DN        %{+Q}[ssl_c_s_dn]
+  http-request set-header X-SSL-Client-CN        %{+Q}[ssl_c_s_dn(cn)]
+  http-request set-header X-SSL-Issuer           %{+Q}[ssl_c_i_dn]
+  server journal 10.0.0.1:80