Is HAProxy able to pass SSL requests to Apache + mod_ssl?

Posted by Josh Smeaton on Server Fault See other posts from Server Fault or by Josh Smeaton
Published on 2011-02-01T05:05:15Z Indexed on 2011/02/01 7:27 UTC
Read the original article Hit count: 655

Filed under:
|
|

Most of the documentation I've read regarding HAProxy and SSL seems to suggest that SSL must be handled before it reaches HAProxy. Most solutions focus on using stunnel, and a few suggest Apache + mod_ssl infront of HAProxy.

Our problem though, is that we use Apache as a reverse proxy to a number of other sites which use their own certificates. Ideally what we'd like, is for HAProxy to pass all SSL traffic to Apache, and let Apache handle either the SSL or reverse proxying.

Our current setup:

Apache Reverse Proxy -> Apache + mod_ssl -> Application

What I'd like to do:

HAProxy -> Apache Reverse Proxy -> Apache + mod_ssl -> Application

Is it possible to do this? Is HAProxy capable of forwarding SSL traffic to be handled by a server BEHIND it?

© Server Fault or respective owner

Related posts about apache

Related posts about ssl