How to Install and Configure HAProxy on CentOS/RHEL 7/6/5

Updated on December 1, 2013 by
Linux Tutorials , , ,

HAProxy is a very fast and reliable solution for high availability, load balancing, It supports TCP and HTTP-based applications. Now a days most of the websites need 99.999% uptime for their site, which are not possible with single server setup. Then we need some high availability environment which can easily manage with single server failure.

haproxy-setup-diagram

This article will help you to install HAProxy on CentOS, RHEL servers and will configure a Layer 4 Load Balancing (Transport Layer). Which will balance load and transfer requests to different-2 servers based on IP address and port numbers.

Step 1 – Install HAProxy

HAProxy package is available under default yum repository for CentOS, Redhat systems. Use the following yum package manager command to install HAProxy on your system.

# yum install haproxy

Step 2 – Configure HAProxy

Update your HAProxy configuration file /etc/haproxy/haproxy.cfg as per your requirement, You may also use below given configuration file as an example of setup and modify it.

# vim /etc/haproxy/haproxy.cfg
[ Update red mark values as per your network setup ]
global
        log 127.0.0.1   local0
        log 127.0.0.1   local1 debug
        maxconn   45000 # Total Max Connections.
        daemon
        nbproc      1 # Number of processing cores.
defaults
        timeout server 86400000
        timeout connect 86400000
        timeout client 86400000
        timeout queue   1000s

# [HTTP Site Configuration]
listen  http_web 192.168.10.10:80
        mode http
        balance roundrobin  # Load Balancing algorithm
        option httpchk
        option forwardfor
        server server1 192.168.10.100:80 weight 1 maxconn 512 check
        server server2 192.168.10.101:80 weight 1 maxconn 512 check

# [HTTPS Site Configuration]
listen  https_web 192.168.10.10:443
        mode tcp
        balance source# Load Balancing algorithm
        reqadd X-Forwarded-Proto: http
        server server1 192.168.10.100:443 weight 1 maxconn 512 check
        server server2 192.168.10.101:443 weight 1 maxconn 512 check

Change the ips in configuration file as per your network setup. In HTTP Site Configuration section if any request on ip 192.168.10.10 on port 80, this will be redirected to port 80 of 192.168.10.100 or 192.168.10.101 servers. Similarly in HTTPS Site Configuration if any request on ip 192.168.10.10 on port 443, this will be redirected to port 443 of 192.168.10.100 or 192.168.10.101 servers.

You also need to make few changes in configuration file as per your system configuration.

  • nbproc <value> # Number of processing cores in your system.
  • mode <value> # ‘http’ for http site and ‘tcp’ for https site
  • balance <value> # Type of load balancing like ‘source’, ’roundrobin’ etc.

    • Step 3 – Start HAProxy Service

    Start HAProxy service using following command, also configure it to auto start on system boot.

    # service haproxy start
# chkconfig haproxy on

    And You have done it.

    Congratulation’s! you have successfully configured HAProxy load balancer. Read next article to enable haproxy stats and setup ACL in HAProxy.

    For more configuration details check below url. http://haproxy.1wt.eu/download/1.4/doc/configuration.txt

Rahul K.
Rahul K.
Connect on Facebook Connect on Twitter Connect on Google+

I, Rahul Kumar am the founder and chief editor of TecAdmin.net. I am a Red Hat Certified Engineer (RHCE) and working as an IT professional since 2009..

Related Posts

16 Comments

  1. SDB Reply to SDB
    August 1, 2018 at 12:27 pm

    Is there any document available to install HA-Proxy 1.8 on Centos 7 ?

  2. rohit Reply to rohit
    August 7, 2017 at 11:00 am

    My haproxy not starting

    • Rahul K. Rahul K. Reply to Rahul
      August 8, 2017 at 9:37 am

      Hi Rohit,

      What is the error?

      • rohit Reply to rohit
        August 16, 2017 at 2:19 pm

        unable to access application through 443 port

        global
        log 127.0.0.1 local0 notice
        maxconn 50000
        daemon
        defaults
        log global
        mode http
        option httplog
        option dontlognull
        contimeout 120000
        clitimeout 120000
        srvtimeout 120000
        option forwardfor
        option http-server-close

        # Configuration for HTTP site
        frontend http-in
        bind *:80
        acl is_oems url_beg /oems
        use_backend http_oems if is_oems
        default_backend http_back

        backend http_oems
        mode http
        balance roundrobin # Load Balancing algorithm
        option httpchk
        option forwardfor
        server WEB2 192.168.40.61:443 weight 1 maxconn 512 check
        server WEB1 192.168.40.60:443 weight 1 maxconn 512 check

        backend http_back
        mode http
        balance roundrobin # Load Balancing algorithm
        option httpchk
        option forwardfor
        server WEB2 192.168.40.61:8080 weight 1 maxconn 512 check
        server WEB1 192.168.40.60:8080 weight 1 maxconn 512 check

        • Rahul K. Rahul K. Reply to Rahul
          August 17, 2017 at 3:17 am

          Hi Rohit, It looks you have not used the configuration shown in the tutorial. To access the site with https required “mode tcp“. Please check step 2 in the tutorial.

          • rohit Reply to rohit
            August 17, 2017 at 10:26 am

            after using your configuration i am getting this error in haproxy service

            [[email protected] ~]# systemctl status haproxy.service
            ● haproxy.service – SYSV: HA-Proxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments.
            Loaded: loaded (/etc/rc.d/init.d/haproxy; bad; vendor preset: disabled)
            Active: failed (Result: exit-code) since Thu 2017-08-17 15:50:20 IST; 51s ago
            Docs: man:systemd-sysv-generator(8)
            Process: 23234 ExecStop=/etc/rc.d/init.d/haproxy stop (code=exited, status=0/SUCCESS)
            Process: 23223 ExecReload=/etc/rc.d/init.d/haproxy reload (code=exited, status=0/SUCCESS)
            Process: 23536 ExecStart=/etc/rc.d/init.d/haproxy start (code=exited, status=1/FAILURE)
            Main PID: 20332 (code=exited, status=0/SUCCESS)

            Aug 17 15:50:20 cloud032 haproxy[23536]: [ALERT] 228/155020 (23540) : parsing [/etc/haproxy/haproxy.cfg:23] : ‘listen’ cannot han…5:443′.
            Aug 17 15:50:20 cloud032 haproxy[23536]: [ALERT] 228/155020 (23540) : parsing [/etc/haproxy/haproxy.cfg:23] : please use the ‘bin…resses.
            Aug 17 15:50:20 cloud032 haproxy[23536]: [ALERT] 228/155020 (23540) : parsing [/etc/haproxy/haproxy.cfg:26] : ‘reqadd’ : Expectin…’http’.
            Aug 17 15:50:20 cloud032 haproxy[23536]: [ALERT] 228/155020 (23540) : Error(s) found in configuration file : /etc/haproxy/haproxy.cfg
            Aug 17 15:50:20 cloud032 haproxy[23536]: [ALERT] 228/155020 (23540) : Fatal errors found in configuration.
            Aug 17 15:50:20 cloud032 haproxy[23536]: Errors found in configuration file, check it with ‘haproxy check’.
            Aug 17 15:50:20 cloud032 systemd[1]: haproxy.service: control process exited, code=exited status=1
            Aug 17 15:50:20 cloud032 systemd[1]: Failed to start SYSV: HA-Proxy is a TCP/HTTP reverse proxy which is particularly suited for…nments..
            Aug 17 15:50:20 cloud032 systemd[1]: Unit haproxy.service entered failed state.
            Aug 17 15:50:20 cloud032 systemd[1]: haproxy.service failed.
            Hint: Some lines were ellipsized, use -l to show in full.

      • rohit Reply to rohit
        August 16, 2017 at 3:30 pm

        Please my below command not working

        global
        log 127.0.0.1 local0 notice
        maxconn 50000
        daemon
        defaults
        log global
        mode http
        option httplog
        option dontlognull
        contimeout 120000
        clitimeout 120000
        srvtimeout 120000
        option forwardfor
        option http-server-close

        # Configuration for HTTP site
        frontend http-in
        bind *:80
        acl is_oems url_beg /oems
        use_backend http_oems if is_oems
        default_backend http_back

        backend http_oems
        mode http
        balance roundrobin # Load Balancing algorithm
        option httpchk
        option forwardfor
        server WEB2 192.168.40.61:443 weight 1 maxconn 512 check
        server WEB1 192.168.40.60:443 weight 1 maxconn 512 check

        backend http_back
        mode http
        balance roundrobin # Load Balancing algorithm
        option httpchk
        option forwardfor
        server WEB2 192.168.40.61:8080 weight 1 maxconn 512 check
        server WEB1 192.168.40.60:8080 weight 1 maxconn 512 check

  3. Allwyn Reply to Allwyn
    August 10, 2015 at 11:01 am

    Hi,
    How to make ha proxy route the traffic if the URL has paths after ‘/’ ? My web app URL is like this http://abc.com:8080/xyz. In my front-end settings I have used ‘path_beg’ to identify ‘/xyz’ but couldn’t set something similar in the back-end settings. Any thoughts ?

  4. Super Man Reply to Super
    February 10, 2015 at 5:42 am

    Can this solution be used to support failover for non-http processes? All we want to achieve is an automatic failover from host_a to host_b if there is a problem with host_a. A very simplistic failover. The app uses a network drive to store its configuration files ,etc. so the host_b can take over with minimal disruption (users can wait upto a minute or so , but the transition needs to be automatic). I was thinking of using a virtual IP address configured on both hosts and a simple script to start the app on host_b when host_a is down. Any ideas?

    Thanks in Advance.

    • Rahul K. Rahul Reply to Rahul
      April 7, 2015 at 3:52 am

      Hi,

      If you are thinking about that you add 2 hosts but only one host serve requests continuously and second host keep as spare. In any case first host goes down, then second take place of them.

      This you can do by adding host_a as active and host_b as backup. Configuration looks like below

      listen http_web 192.168.10.10:80
      mode http
      balance source
      option httpchk
      option forwardfor
      server host_a 192.168.10.100:80 weight 1 maxconn 512 check
      server host_b 192.168.10.101:80 weight 1 maxconn 512 check backup

      Also you can use this configuration for non http requests.

  5. saudi Reply to saudi
    January 1, 2015 at 9:28 am

    easy to follow explanation. thanks

  6. dhenyismail Reply to dhenyismail
    July 29, 2014 at 7:44 am

    how to configure haproxy explanation of this?

    server server1 192.168.10.100:443 weight 1 maxconn 512 check
    server server2 192.168.10.101:443 weight 1 maxconn 512 check

    thanks..

  7. Mathieu Reply to Mathieu
    May 14, 2014 at 1:53 pm

    HaProxy seems to be not available on EPEL for RHEL6/CentOS6.

    • dbman Reply to dbman
      July 24, 2014 at 8:34 pm

      It is no longer on EPEL. haproxy was moved to the base load for RHEL/CentOS 6.4 and above. You will find it in the base repo, or on your DVD if you have 6.4 or later.

  8. Harsh Reply to Harsh
    October 18, 2013 at 11:04 am

    Very nice blog, Simple and precise..

  9. sustainabilitymarket.in Reply to sustainabilitymarket.in
    July 3, 2013 at 7:13 pm

    Whoa! This blog looks just like my old one!
    It’s on a completely different topic but it has pretty much the same page layout and design. Outstanding choice of colors!

Leave a Reply

All rights reserved. © 2013-2018 TecAdmin.net. This site uses cookies. By using this website you agree our term and services