Jasmin shahrzad
asked on
haproxy and secure ftp server.
how to use Haproxy to publish an internal SFTP server.
ASKER
What does you mean. can you please detail your suggestion for forward port 22 to the intended target.
i have a a ubuntu (u1)server with ssh on port 107000 there is not login for user ftpuser
then on other ubuntu (u2)box i have haproxy with haproxy.cfg like that
global
......
.....
default
...
...
listen ftp-server
bind :4141
mode tcp
default_backend sftp-server
backend sftp-server
server ftp01 u1.mydomain.com:107000 check
what i do wrong here
from filezila
i try sftp://u2.mydomain.com username password port=4141
i have a a ubuntu (u1)server with ssh on port 107000 there is not login for user ftpuser
then on other ubuntu (u2)box i have haproxy with haproxy.cfg like that
global
......
.....
default
...
...
listen ftp-server
bind :4141
mode tcp
default_backend sftp-server
backend sftp-server
server ftp01 u1.mydomain.com:107000 check
what i do wrong here
from filezila
i try sftp://u2.mydomain.com username password port=4141
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
then again why not forward port 22 to the intended target.
There is nothing in a SSH session that is useful to haproxy for dispatching, the link is encrypted from the start,
no SNI... (SSL isn't used).
It will surely give a better performance .