lua doesn't capture authorization requests

[itcrowdsource]

I've installed the validation plugin by following the procedure. Initially the script worked but after a while it didn't.

Environment:

• Installed 2 Haproxy servers with a floating IP in front
• HA-Proxy version 1.6.3 2015/12/25
• Operating system: Ubuntu Xenial
• 2 NGINX back-end web servers

Steps to reproduce:

• Haproxy runs in chroot mode
• Configured the global and front-end sections according to the instructions
• Restarted Haproxy
• Haproxy seems to load the lua plugin: haproxy1 haproxy-systemd-wrapper[432]: [info] 126/114103 (433) : [acme] http-01 plugin v0.1.1
• If I generate a certificate it does create the tokens in the folder: /var/lib/haproxy/.well-known/acme-challenge/ on the Haproxy server
• I ran the letsencrypt/certbot client to generate new certificates, with the results in de log dump below:
• It seems that the authorization request is directly forwarded from the Haproxy system to the back-end servers and that the lua doesn't capture and process these requests. On the back-end webservers I see incoming requests from Let's Encrypt looking for the http://domainx.com/.well-known/acme-challenge/nYD1_fbMcn5Op0XoWI5XJsIQsSgAJ-SfieuLW5hNf3U

Start log<< Saving debug log to /var/log/letsencrypt/letsencrypt.log Renewing an existing certificate Performing the following challenges: http-01 challenge for domainx.net http-01 challenge for www.domainx.net http-01 challenge for ads.domainx.net http-01 challenge for domainx.com Using the webroot path /var/lib/haproxy for all unmatched domains. Waiting for verification... Cleaning up challenges Failed authorization procedure. domainx.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://domainx.com/.well-known/acme-challenge/nYD1_fbMcn5Op0XoWI5XJsIQsSgAJ-SfieuLW5hNf3U: "

404 Not Found

---

", www.domainx.net (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://www.domainx.net/.well-known/acme-challenge/AN9zePHcugsfYs6hAbia2jnDkZYqLnyUvWxkLHhXH0g: "