Hello, I’m trying to get a second domain working but am having troubles.
For starters - first domain works great with HAProxy. Followed Tom’s video to the T, and then exposed a few parts of it to the internet and it’s pretty slick.
My setup -
Domain (orange .com) in Cloudflare, proxied to my WAN address
Comes in through port 443 on my pfSense box
HAProxy, listening on WAN, uses its ACLs and sees that I typed in orange .com
Backend points to nginx webserver
Let’s Encrypt cert for orange .com gets applied on the way back to the client
Again, this part works great. The part I’m having trouble with is my second domain (banana .com). When I set it up to only be available internally, (DNS resolver host override pointing at HAProxy), it works exactly like orange .com. I just set the ACL for host matches: banana .com, point it to the backend for my second nginx server, put the cert for banana .com in the additional cert section of the frontend, and voila.
When I put that same ACL, with the same additional cert for banana.com in my frontend, listening on WAN, I run into 522 - connection timed out errors.
Changing the orange backend to point at the banana server works as it should and shows the banana webpage
I also watched Tom’s troubleshooting video, and didn’t have problems with any of the things he suggested. Using the openssl command gives me the same info for both domains, obviously just differing in one being orange .com and the other being banana .com.
I’ve restarted both the HAProxy package and the router multiple times to make sure something isn’t hanging up. Here’s a bunch of screenshots to show what I’m seeing. I really appreciate anyone who takes the time to read through here and respond, thank you.
