diff options
| author | terminaldweller <thabogre@gmail.com> | 2021-01-17 06:18:35 +0000 |
|---|---|---|
| committer | terminaldweller <thabogre@gmail.com> | 2021-01-17 06:18:35 +0000 |
| commit | ecef4e3cc9f2d414b817b18a0b9c7303c39e519a (patch) | |
| tree | 7d947424ee1bd386a39a6e5a2bb41f4e9aeb4ead /matrix-server/haproxy/haproxy.cfg | |
| parent | fixed the matrix image (diff) | |
| download | dockerimages-ecef4e3cc9f2d414b817b18a0b9c7303c39e519a.tar.gz dockerimages-ecef4e3cc9f2d414b817b18a0b9c7303c39e519a.zip | |
matrix server docker-compose WIP
Diffstat (limited to 'matrix-server/haproxy/haproxy.cfg')
| -rw-r--r-- | matrix-server/haproxy/haproxy.cfg | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/matrix-server/haproxy/haproxy.cfg b/matrix-server/haproxy/haproxy.cfg new file mode 100644 index 0000000..2afa3fb --- /dev/null +++ b/matrix-server/haproxy/haproxy.cfg @@ -0,0 +1,30 @@ +global + stats socket :9999 level admin expose-fd listeners + log stdout format raw local0 + ssl-default-bind-ciphers kEECDH+aRSA+AES:kRSA+AES:+AES256:RC4-SHA:!kEDH:!LOW:!EXP:!MD5:!aNULL:!eNULL + +frontend http + bind :80 + http-request redirect scheme https unless { ssl_fc } + acl certbot path_beg /.well-known/acme-challenge/ + use_backend certbot if certbot + +frontend https + bind :::443 v4v6 ssl crt /etc/certificates strict-sni alpn h2.http/1.1 + acl matrix-host hdr(host) -i matrix.example.com + acl matrix-path path_beg /_matrix + acl matrix-path path_beg /_synpase/client + use_backend matrix if matrix-host matrix-path + +frontend matrix-federation + bind :::8448 v4v6 ssl crt /etc/certificates alpn h2.http/1.1 + default_backend matrix + +resolvers docker_resolver + nameserver dns 127.0.0.11:53 + +backend matrix + server matrix synapse:8008 + +backend certbot + server certbot certbot:380 |