Categories
Ansible Computing Git HAProxy HowTo Linux

Environment variables for services in a systemd-based system

My current config deployment automation project has required me to set up a dev/staging environment for my load balancers, since I don’t want to break stuff by deploying untested configurations. This environment is functionally identical to a single load balancer and can be used along with a hosts file on a client to not only […]

Categories
Ansible Computing Git HAProxy HowTo Linux Web Services

Continuous Deployment of Load Balancer Configurations

I thought I’d describe some optimizations I’ve made to my load balancers at work, both for the good of the older me, and in case someone would benefit from some of my ideas. Background The load balancers are based on four software packages that integrate to create a powerful whole: Keepalive Daemon provides a common […]

Categories
Citrix Computing HAProxy

Load balancing a Citrix StoreFront

This is well-documented by Citrix too; I just thought I’d write a few lines on a gotcha I happened upon: Load balancing the Citrix StoreFront has two prerequisites: The StoreFront servers must see the load balancer VIP when looking up the service FQDN. The load balancers must be configured with session affinity, since it doesn’t […]

Categories
Computing Exchange 2016 HAProxy Linux Windows

Load Balancing Exchange 2016 behind HAProxy

I recently started the upgrade to Exchange 2016 at work. A huge benefit over Exchange 2010, is that REST based client connections are truly stateless. In effect this means that if a server goes down, clients shouldn’t really notice any issues as long as something redirects them to a working server. In my system, this […]

Categories
Computing HAProxy Linux Security Web Services

Securing an Internet accessible server – Part 3

This post is part of a series. Part 1, Part 2. In the last part I briefly mentioned load balancers and proxies. After thinking about it for a while, I realized I see no reason not to run one, since it simplifies things a bit when setting up secure web services. In this part, we […]

Categories
Computing HAProxy Linux Security Web Services

WordPress behind HAProxy with TLS termination

My current project has been to set up a publicly accessible web server with a decent level of security. It has been an interesting exercise in applying “old” knowledge and gathering some new. This weekend I finished this project for now. The current setup is as follows: Behind my firewall, where I NAT port 80 and […]