Hello,
Someone suggested I try posting this here, as Tom, you’ve had some great PFSENSE + HAproxy resources (already watched your videos).
Ultimately my goal is to allow access to some internal servers, but secure it behind a client certificate authentication.
- meaning, clients that have the certificate, can access the internal servers, but the rest of the world cannot.
- ideally traffic would also then be encrypted via a typical ACME+HAproxy HTTPS connection.
It’s my understanding that this should be possible, but I’m having trouble finding any good resources for this type of implementation.
- google-foo results seem to mainly be people asking for help.
If I can help clarify anything about what I’m trying to do, please let me know.
Thank you!