https://serverbooter.com/tags/haproxy/Recent content in Haproxy onHugoen-usraravena80@gmail.com (Ricardo Aravena)raravena80@gmail.com (Ricardo Aravena)Thu, 21 Aug 2025 11:04:46 -0700https://serverbooter.com/post/how-to-create-an-ansible-playbook-to-configure-haproxy/Mon, 21 Oct 2013 00:00:00 +0000raravena80@gmail.com (Ricardo Aravena)https://serverbooter.com/post/how-to-create-an-ansible-playbook-to-configure-haproxy/<p>This is the continuation for <a href="https://serverbooter.com/post/setup-a-simple-haproxy-config/">Setup a simple HAproxy config</a></p> <p>It explains how to create an Ansible playbook to automate the haproxy configuration.</p> <p>If you&rsquo;d like to find out more about Ansible you can read up on it on their website: <a href="http://www.ansible.com">http://www.ansible.com</a></p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nn">---</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="c"># Set up and configure an HaProxy server (Ubuntu flavor)</span><span class="w"> </span></span></span><span class="line"><span class="cl">- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">haproxy</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">hosts</span><span class="p">:</span><span class="w"> </span><span class="l">all</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">user</span><span class="p">:</span><span class="w"> </span><span class="l">userwithsudoaccess</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">sudo</span><span class="p">:</span><span class="w"> </span><span class="kc">True</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">tags</span><span class="p">:</span><span class="w"> </span><span class="l">haproxy</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">vars_files</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="s2">&#34;vars/main.yml&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">tasks</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="c"># haproxy package for Ubuntu</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">include</span><span class="p">:</span><span class="w"> </span><span class="l">tasks/haproxy-apt.yml</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="c"># Specific haproxy tasks follow here</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">Copy haproxy logrotate file</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">action</span><span class="p">:</span><span class="w"> </span><span class="p">&gt;</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> copy src=files/haproxy.logrotate dest=/etc/logrotate.d/haproxy </span></span></span><span class="line"><span class="cl"><span class="sd"> mode=0644 owner=root group=root</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">Create haproxy rsyslog configuration</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">action</span><span class="p">:</span><span class="w"> </span><span class="p">&gt;</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> copy src=files/haproxy-rsyslog.conf </span></span></span><span class="line"><span class="cl"><span class="sd"> dest=/etc/rsyslog.d/49-haproxy.conf </span></span></span><span class="line"><span class="cl"><span class="sd"> mode=0644 owner=root group=root</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">notify</span><span class="p">:</span><span class="w"> </span><span class="l">restart rsyslog</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">Configure system rsyslog</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">action</span><span class="p">:</span><span class="w"> </span><span class="p">&gt;</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> copy src=files/rsyslog.conf </span></span></span><span class="line"><span class="cl"><span class="sd"> dest=/etc/rsyslog.conf </span></span></span><span class="line"><span class="cl"><span class="sd"> mode=0644 owner=root group=root</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">notify</span><span class="p">:</span><span class="w"> </span><span class="l">restart rsyslog</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="nt">name</span><span class="p">:</span><span class="w"> </span><span class="l">Create haproxy configuration file</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">action</span><span class="p">:</span><span class="w"> </span><span class="p">&gt;</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> template src=templates/haproxy.cfg.j2 dest=/etc/haproxy/haproxy.cfg </span></span></span><span class="line"><span class="cl"><span class="sd"> mode=0644 owner=root group=root</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">notify</span><span class="p">:</span><span class="w"> </span><span class="l">restart haproxy</span><span class="w"> </span></span></span></code></pre></div><p>The following file that contains the variables needed for the haproxy playbook it should located under vars (vars/main.yml)</p>https://serverbooter.com/post/setup-a-simple-haproxy-config/Mon, 21 Oct 2013 00:00:00 +0000raravena80@gmail.com (Ricardo Aravena)https://serverbooter.com/post/setup-a-simple-haproxy-config/<p>Here&rsquo;s simple haproxy configuration to get you started, you probably want to stick this under /etc/haproxy/haproxy.cfg</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-plain" data-lang="plain"><span class="line"><span class="cl">global </span></span><span class="line"><span class="cl"> log 127.0.0.1 local0 </span></span><span class="line"><span class="cl"> log 127.0.0.1 local1 notice </span></span><span class="line"><span class="cl"> maxconn 4096 </span></span><span class="line"><span class="cl"> user haproxy </span></span><span class="line"><span class="cl"> group haproxy </span></span><span class="line"><span class="cl"> daemon </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">defaults </span></span><span class="line"><span class="cl"> log global </span></span><span class="line"><span class="cl"> mode http </span></span><span class="line"><span class="cl"> option httplog </span></span><span class="line"><span class="cl"> option dontlognull </span></span><span class="line"><span class="cl"> retries 3 </span></span><span class="line"><span class="cl"> option redispatch </span></span><span class="line"><span class="cl"> maxconn 4096 </span></span><span class="line"><span class="cl"> contimeout 5000 </span></span><span class="line"><span class="cl"> clitimeout 50000 </span></span><span class="line"><span class="cl"> srvtimeout 50000 </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> stats enable </span></span><span class="line"><span class="cl"> stats auth admin:password </span></span><span class="line"><span class="cl"> stats uri /monitor </span></span><span class="line"><span class="cl"> stats refresh 5s </span></span><span class="line"><span class="cl"> option httpchk GET /status </span></span><span class="line"><span class="cl"> retries 5 </span></span><span class="line"><span class="cl"> option redispatch </span></span><span class="line"><span class="cl"> errorfile 503 /etc/haproxy/errors/503.http </span></span><span class="line"><span class="cl"> errorfile 400 /etc/haproxy/errors/400.http </span></span><span class="line"><span class="cl"> errorfile 403 /etc/haproxy/errors/403.http </span></span><span class="line"><span class="cl"> errorfile 408 /etc/haproxy/errors/408.http </span></span><span class="line"><span class="cl"> errorfile 500 /etc/haproxy/errors/500.http </span></span><span class="line"><span class="cl"> errorfile 502 /etc/haproxy/errors/502.http </span></span><span class="line"><span class="cl"> errorfile 503 /etc/haproxy/errors/503.http </span></span><span class="line"><span class="cl"> errorfile 504 /etc/haproxy/errors/504.http </span></span><span class="line"><span class="cl"> balance roundrobin # each server is used in turns, according to assigned weight </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">listen http-in </span></span><span class="line"><span class="cl"> bind :80 </span></span><span class="line"><span class="cl"> monitor-uri /haproxy # end point to monitor HAProxy status (returns 200) </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> # option httpclose </span></span><span class="line"><span class="cl"> server server1 server1.mydomain.com:8080 weight 1 maxconn 2000 check inter 4000 </span></span><span class="line"><span class="cl"> server server2 server2.mydomain.com:8080 weight 1 maxconn 2000 check inter 4000 </span></span><span class="line"><span class="cl"> server server3 server3.mydomain.com:8080 weight 1 maxconn 2000 check inter 4000 </span></span><span class="line"><span class="cl"> rspidel ^Set-cookie:\ IP= # do not let this cookie tell our internal IP address </span></span></code></pre></div><p>You also want to setup logging using rsyslog, you can syslog-ng or other loggers too as well, but the configuration is different.</p>