Load Balancing with HAProxy

This is the latest release of my serversforhackers.com newsletter. I'm hoping for improvements / comments on configuration if you have any! (Otherwise, hopefully you learn something useful :D )

I could have used part of that yesterday!<p>Suggestions:<p>As I have installed HAProxy in a Docker container, I noticed that the dependencies for `sudo add-apt-repository` are quite numerous. Instead I created a new sources.list and added the signing key manually.<p>Since you use SSL, a nice addition to your configuration is to redirect non-ssl trafic:<p><pre><code> redirect scheme https code 301 if !{ ssl_fc } </code></pre> Examples on the web leave out the `code 301` (the default is 302).<p>Finally I had to try a few different ways to get my certificate and key to work with HAProxy. The order in my case was certificate, private key, intermediate, root ca (concatenated in a single file).

How is HAProxy&#x27;s IPv6 support in an IPv6-only stack? I&#x27;ve been using OpenBSD in conjunction with CARP and relayd because IPv6 load balancing under Linux was lacking when I was evaluating options some years ago. I can find that it features IPv6 support, but not much more than that other than use cases for IPv6-to-IPv4 translation, which I&#x27;m not interested in.