Change haproxy SSL lists from list form to text file

Steven S

At the moment, the haproxy.cf lists all newly added SSL's to a single line which after a while will crash haproxy on restart due to max number of characters.

To bypass this, change the way haproxy accesses all SSL's in one place as such:

bind *:443 ssl crt-list /etc/ssl/fulllist/crt.txt

All you need to do is echo the location of them pem into the file to add it and a quick haproxy reload to get it working.

Currently running this setup on my system which overwrites the haproxy.cfg when a new SSL is added but this means manual restarts are needed.


Activity Newest / Oldest



Status changed to: Planned