Closed BBKeith closed 7 years ago
cookandy
commented
7 years ago SNI is possible ...see here:
https://github.com/eBayClassifiedsGroup/PanteraS/blob/master/README.md#enabling-ssl-on-haproxy
By default, enabling SSL will use a generic cert for all apps. But you can create a cert for each app and use SNI in haproxy.
sielaq
commented
7 years ago Basic SSL passthrough (no SSL termination) can be done just by using mode TCP,
try spawn service like SERVICE_TAGS=haproxy,haproxy_tcp=<your_port>
full example:
https://github.com/eBayClassifiedsGroup/PanteraS/blob/master/examples/SimpleWebappPython/deploy2_marathon.json#L18
sielaq
commented
7 years ago also new Fabio is supporting any possible way
Hello,
We currently have PanteraS running using SSL termination at HAProxy and are investigating using SSL passthrough so we can have apps running https.
Is this something that is possible in PanteraS? We have done some investigation with deploying apps in tcp mode but would like to know it works before trying further.
If possible what config changes need to be made?
Thanks