Question

I  have a server through which I am running kibana & I have set it in such a way that it can be accessed from localhost. This is a linux server so i can do:

links http://localhost:5601

I tried and it is running fine but I want to put this Kibana server behind HAProxy which will act as a reverse proxy for Kibana.
My Haproxy config file (/etc/haproxy/haproxy.cfg) looks like:

global

        log /dev/log    local0

        log /dev/log    local1 notice

        chroot /var/lib/haproxy

        stats socket /run/haproxy/admin.sock mode 660 level admin

        stats timeout 30s

        user haproxy

        group haproxy

        daemon

        # Default SSL material locations

        ca-base /etc/ssl/certs

        crt-base /etc/ssl/private

        # Default ciphers to use on SSL-enabled listening sockets.

        # For more information, see ciphers(1SSL). This list is from:

        #  https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers/

        ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

        ssl-default-bind-options no-sslv3

defaults

        log     global

        mode    http

        option  httplog

        option  dontlognull

        option  http-keep-alive

        timeout http-keep-alive 5m

        timeout http-request 5s

        timeout connect 300s

        timeout client  300s

        timeout server  300s

        timeout check   300s

        #timeout connect 5000

        #timeout client  50000

        #timeout server  50000

        errorfile 400 /etc/haproxy/errors/400.http

        errorfile 403 /etc/haproxy/errors/403.http

        errorfile 408 /etc/haproxy/errors/408.http

        errorfile 500 /etc/haproxy/errors/500.http

        errorfile 502 /etc/haproxy/errors/502.http

        errorfile 503 /etc/haproxy/errors/503.http

        errorfile 504 /etc/haproxy/errors/504.http

listen stats 0.0.0.0:9000       #Listen on all IP's on port 9000

    #This is the virtual URL to access the stats page

    stats uri /haproxy_stats

    #Authentication realm. This can be set to anything. Escape space characters with a backslash.

    stats realm HAProxy\ Statistics

    #The user/pass you want to use. Change this password!

    stats auth admin:passwordhere

    #This allows you to take down and bring up back end servers.

    #This will produce an error on older versions of HAProxy.

    stats admin if TRUE 

I don’t know what kind of frontend & backend should I add to this file, I thing context based switching would be more fun. I am looking for "http://haproxy_ip/kibana"  which should redirect me to kibana web page. Can anyone solve my query.

Thank you.

Answer 1

You should add the following code to /etc/haproxy/haproxy.cfg
Now http://haproxy_ip/kibana will open kibana dashboard.

listen  http-port80 *:80

    mode   http

    reqirep ^(accept:\ .*)(http://www.example.org/xhtml,)(.*) \1"http://www.example.org/xhtml",\3

    acl acl_kibana path_beg /kibana

    use_backend kibana if acl_kibana

backend kibana

    mode   http

    reqirep ^(accept:\ .*)(http://www.example.org/xhtml,)(.*) \1"http://www.example.org/xhtml",\3

    balance roundrobin

    server  kibana **kibana_server_ip**:5601 weight 1 maxconn 512 check

I hope it will resolve your query.