I have been running HAproxy same general config that chulerico listed. It knows nothing of and doesn't care about the certs, it just hands off the connection to the security server and happy day. I don't use an internally signed cert on my Security Servers, because they are public facing, but the cert is setup with the hostname that resolves to the load balanced IP.
↧