HAProxy-WI: Run Lots Of Public Services On Your Home Server

preview_player
Показать описание


**********************************
Thanks for watching our videos! If you want more, check us out online at the following places:


-----------------------------------------------------------------------------------------------------------
Licensed under Creative Commons: By Attribution 3.0 License
  1. Level1Linux
  2. technology
  3. science
  4. design
  5. ux
  6. computers
Рекомендации по теме
HAProxy-WI: Run Lots 0:25:24

HAProxy-WI: Run Lots Of Public Services On Your Home Server

How HAProxy forwards 0:47:04

How HAProxy forwards 2 Million Requests Per Second? - The Backend Engineering Show

What makes Envoy 0:01:35

What makes Envoy different than NGINX and HAProxy

Servers provisioning in 0:06:32

Servers provisioning in HAProxy-WI v5.0

Exposing Home assistant 0:07:42

Exposing Home assistant to public internet via Haproxy and preemtible GCP VM

Slack's Migrating Millions 0:34:57

Slack's Migrating Millions of Websockets from HAProxy to Envoy, lets discuss

29 - Security 0:16:58

29 - Security in Haproxy

Tuning Linux + 0:02:29

Tuning Linux + HAProxy

D115. HAProxy installation 0:12:14

D115. HAProxy installation and testing (check this before moving on to Spring Cloud!!)

Drupal 8: Load 1:07:55

Drupal 8: Load Balancing with HAProxy

PoC - Video 0:14:35

PoC - Video streaming with nginx, haproxy, obs and ffmpeg

Proxy In 5 0:05:27

Proxy In 5 Minutes | What Is A Proxy? | What Is A Proxy Server? | Proxy Explained | Simplilearn

HAProxy 2 4 0:09:30

HAProxy 2 4 Install and Basic Setup On Ubuntu 20 04 LTS

Boost Your Web 0:32:15

Boost Your Web Apps with HAProxy & Varnish | Jérémy Lecour

Session - 158 1:08:46

Session - 158 | HAProxy Load Balancer Server Configuration on Linux (RHEL 8/9) | Nehra Classes

Introduction to HAProxy 0:15:21

Introduction to HAProxy

Self-host your home 0:10:15

Self-host your home router with pfSense! | My experience setting it up

SSH into Backend 0:11:57

SSH into Backend Servers without Publicly Exposing Them - SSH Connection Routing with HAProxy

dotScale 2018 - 0:17:38

dotScale 2018 - Willy Tarreau - Observability tips with HAProxy

HAProxy SSL Pfsense 0:12:37

HAProxy SSL Pfsense Wan-Lan

Enabling SD-WAN Operations 0:50:12

Enabling SD-WAN Operations Using HAProxy - Gurpreet Singh & Patrick Dumais - HAProxyConf 2021

Re-introducing myself to 0:48:35

Re-introducing myself to HAProxy

haproxy-https service can't 0:02:17

haproxy-https service can't bind socket on restart

HAProxy балансировка нагрузки 1:10:46

HAProxy балансировка нагрузки и маршрутизация

Комментарии
Автор

I'd love to see you do a collaboration with Lawrence systems.

antaishizuku
Автор

Nice video, thank you!

Couple little remarks: HAProxy-WI doesn't take all stuff from SSH. Main part information provides from sockets. Also GUI can install haproxy, nginx and keepalived and configures your hosts, so you don't need install them by manually

roxy-wi
Автор

OMG I was literally wanting to do this and was research. Was going to make a forum post asking about software.

xryz
Автор

thanx for this, I had just started investigating what I could use to set up this exact same senario for 2x seperate private networks, both on RPi's - the fact that it has already been prototyped for two seperate users/networks, AND documented, has already taken a load off my mind, especially the securty aspect of it all - cheers, and thanx again

paulwratt
Автор

so much gold being spilled for free man, thanks uncle Wendel, you make us better IT Masters

JoaoSilva-gsjb
Автор

Man Wendell, no wonder your Linux videos take awhile! That was a work of art! Its like if Leonardo DaVinci was a computer janitor/plumber. Keep it up! Im definitely gonna try this

brianmccullough
Автор

I have been looking for some of these answers for almost as long as your video has been posted... Thank you!

kurtpeterson
Автор

Dude this is ace. I can’t believe I haven’t done IT in like 20years but I understood everything you just explained.

Last time I did this was at uni of Canberra in 2003 using Apache as a reverse proxy facing the internet and everything else was behind it. I was actually employed as a web dev and when I rocked up I was like “hey reverse proxy” and they (systems) were like “oh fuck, why didn’t we think of that” lol.

TerenceKearns
Автор

This is pretty neat. I've done a similar thing for email, except rather than using a proxy, using postfix to forward via SMTP to my home server.
This way I get more control over the email protocol, and messages can queue up for days rather than hours if there is a network issue.

Simon
Автор

When Wendell comes out with a Linux video I don't even need a notification my Nerdy Sense just tingles.. 😏

By the way check Nginx Proxy Manager stupid simple to use with Docker.

geogmz
Автор

Damn - just noticed the Digital Unix box in the background. Used to have that in miy office. Looonnnnggg time since I saw that!

michaelpelley
Автор

I was trying to do something like this yesterday! I'll revisit this video during the weekend. Thanks Wendell!

MartinPaoloni
Автор

Thanks for making this video, Wendell! You're a legend, extremely interesting stuff! <3

sanjacobs
Автор

I've been thinking of hosting my own email for a while this is certainly a good starting spot.

MikeBohde
Автор

Great video, for a company i created a drag and drop GUI tool to create ha configs that could be directly deployed to proxy servers.

mjarkk
Автор

If I wanted to forward client headers through the proxy to the backend, how would I do that with HA Proxy? I'm using OPNSense rather than PFSense because PF doesn't support the NICs in my hardware.

gardiner_bryant
Автор

Been running like this for years, but imo in a easier way.

Could be more secure and easy to set up if between the VPS and your home connection you use a VPN, then use SSL termination on the haproxy before forwarding.
This makes things easy to manage imo, the cert used is in 1 location and the haproxy config is pretty simple.

In my case there is a VM with docker containers that serve anything from web to tftp, pxe servers and more on the LAN.

For the VPN, you can use pfsense or in your NAS

Additionally for the letsencrypt cert, when using pfsense the renewal can be handled for that by it.
A tip for this, add a post script to put the cert on your NAS. That location can then be mounted on your VPS due to having the VPN, run an automatic reload script when the cert changes. This way there is 0 down time and no intervention needed.

Crazytje
Автор

The amount of ACLs on my pfsense box is getting insane for haproxy, that coupled with the dynamic dns service is wonderful.

JzJad
Автор

This is very similar to what Helm is doing, but they are selling a complete solution for ~$500.

mjbates
Автор

I used to do something similar with SSH to make a webserver on my notebook/phone available(behind an authenticating proxy) via my VPS.
Also that security by obscurity thing. I used to host a small website at home. But traffic was getting annoying. My solution? Drop ICMP pings at my router. My website was still available, but almost all scanners ping'ed before trying HTTP.

Maxjoker