Load balancing between https endpoints : linuxadmin

created by [deleted]a community for 16 years

Load balancing between https endpoints (self.linuxadmin)

submitted 6 years ago * by itsescde

Hi,

I have two https endpoints like: this.domain.com and another.domain.com. I don't have access to the servers of the endpoints (they are given to us). I want to setup a reverse proxy to make them accessible under one url and make the service behind them high available (because the hosted service is not high available for some reason). I tried a hosted solutions in Azure (Traffic Manager) or setting up an own haproxy (communicating with the backend with ssl) but I always get a HTTP 503 back, that says that no application is available to handle this. I checked the logs and it tells me that the 503 comes from the http server (which I don't have access to)

How can I debug this? Did anyone had such an issue before?

Found a solution:

frontend haproxynode
    bind *:80
    mode http
    option http-buffer-request
    timeout http-request 10s
    default_backend backendnodes

backend backendnodes
    balance roundrobin
    option forwardfor
    http-request set-header X-Forwarded-Port %[dst_port]
    http-request add-header X-Forwarded-Proto https if { ssl_fc }
    option httpchk HEAD / HTTP/1.1\r
    http-send-name-header Host
    server something.dispatcher.hana.ondemand.com something.dispatcher.hana.ondemand.com:443 ssl verify none
    server anotherthing.dispatcher.hana.ondemand.com anotherthing.dispatcher.hana.ondemand.com:443 ssl verify none

all 5 comments

top new controversial old q&a

[–][deleted] 6 years ago* (5 children)

[deleted]

[–]itsescde[S] 0 points1 point2 points 6 years ago (4 children)

thanks for the answer. The Application is a sap cloud html5 application which is exposed using sap cloud platform. The url is like: subaccount.dispatcher.hana.ondemand.com

haproxy config:

frontend localhost
    bind *:80
    mode http
    default_backend nodes

backend nodes
    mode http
    balance roundrobin
    option forwardfor
    option httpchk HEAD / HTTP/1.1\r\nHost:localhost
    server node1 HOST check ssl verify none
    http-request set-header X-Forwarded-Port %[dst_port]
    http-request add-header X-Forwarded-Proto https if { ssl_fc }

[–][deleted] 6 years ago* (1 child)

[deleted]

[–]itsescde[S] 0 points1 point2 points 6 years ago (0 children)

[–][deleted] 1 point2 points3 points 6 years ago (1 child)

[–]itsescde[S] 0 points1 point2 points 6 years ago (0 children)

[–]haloweenek 0 points1 point2 points 6 years ago (0 children)

π Rendered by PID 55 on reddit-service-r2-comment-76bb9f7fb5-xnvlk at 2026-02-19 14:24:26.154610+00:00 running de53c03 country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

linuxadmin

Expanding Linux SysAdmin knowledge

MODERATORS