Version | Build status | Docker tag |
---|---|---|
2.0-buster | ||
2.0.26-alpine | ||
2.2-bullseye-slim | ||
2.2.20-alpine | ||
2.3-bullseye | ||
2.3.17-alpine | ||
2.4-bullseye-slim | ||
2.4.12-alpine | ||
2.5-bullseye-slim | ||
2.5.1-alpine | ||
2.6-rc-bullseye | ||
2.6-dev-alpine |
-
Maintained by:
Buluma -
Where to get help:
the Docker Community Forums, the Docker Community Slack, or Stack Overflow
2.6-dev0
,2.6-dev
,2.6-dev0-bullseye
,2.6-dev-bullseye
2.6-dev0-alpine
,2.6-dev-alpine
,2.6-dev0-alpine3.15
,2.6-dev-alpine3.15
2.5.0
,2.5
,latest
,2.5.0-bullseye
,2.5-bullseye
,bullseye
2.5.0-alpine
,2.5-alpine
,alpine
,2.5.0-alpine3.15
,2.5-alpine3.15
,alpine3.15
2.4.11
,2.4
,lts
,2.4.11-bullseye
,2.4-bullseye
,lts-bullseye
2.4.11-alpine
,2.4-alpine
,lts-alpine
,2.4.11-alpine3.15
,2.4-alpine3.15
,lts-alpine3.15
2.3.16
,2.3
,2.3.16-bullseye
,2.3-bullseye
2.3.16-alpine
,2.3-alpine
,2.3.16-alpine3.15
,2.3-alpine3.15
2.2.19
,2.2
,2.2.19-bullseye
,2.2-bullseye
2.2.19-alpine
,2.2-alpine
,2.2.19-alpine3.15
,2.2-alpine3.15
2.0.26
,2.0
,2.0.26-buster
,2.0-buster
2.0.27-alpine
,2.0-alpine
,2.0.27-alpine3.15
,2.0-alpine3.15
1.8.30
,1.8
,1.8.30-buster
,1.8-buster
1.8.30-alpine
,1.8-alpine
,1.8.30-alpine3.15
,1.8-alpine3.15
1.7.14
,1.7
,1.7.14-buster
,1.7-buster
1.7.14-alpine
,1.7-alpine
,1.7.14-alpine3.12
,1.7-alpine3.12
-
Where to file issues:
https://github.com/docker-library/haproxy/issues -
Supported architectures: (more info)
amd64
,arm32v5
,arm32v6
,arm32v7
,arm64v8
,i386
,mips64le
,ppc64le
,s390x
-
Published image artifact details:
repo-info repo'srepos/haproxy/
directory (history)
(image metadata, transfer size, etc) -
Image updates:
official-images repo'slibrary/haproxy
label
official-images repo'slibrary/haproxy
file (history) -
Source of this description:
docs repo'shaproxy/
directory (history)
HAProxy is a free, open source high availability solution, providing load balancing and proxying for TCP and HTTP-based applications by spreading requests across multiple servers. It is written in C and has a reputation for being fast and efficient (in terms of processor and memory usage).
Since no two users of HAProxy are likely to configure it exactly alike, this image does not come with any default configuration.
Please refer to upstream's excellent (and comprehensive) documentation on the subject of configuring HAProxy for your needs.
It is also worth checking out the examples/
directory from upstream.
FROM haproxy:2.3
COPY haproxy.cfg /usr/local/etc/haproxy/haproxy.cfg
$ docker build -t my-haproxy .
$ docker run -it --rm --name haproxy-syntax-check my-haproxy haproxy -c -f /usr/local/etc/haproxy/haproxy.cfg
$ docker run -d --name my-running-haproxy --sysctl net.ipv4.ip_unprivileged_port_start=0 my-haproxy
You will need a kernel at version 4.11 or newer to use --sysctl net.ipv4.ip_unprivileged_port_start=0
, you may need to publish the ports your HAProxy is listening on to the host by specifying the -p option, for example -p 8080:80 to publish port 8080 from the container host to port 80 in the container. Make sure the port you're using is free.
Note: the 2.4+ versions of the container will run as USER haproxy
by default (hence the --sysctl net.ipv4.ip_unprivileged_port_start=0
above), but older versions still default to root
for compatibility reasons; use --user haproxy
(or any other UID) if you want to run as non-root in older versions.
$ docker run -d --name my-running-haproxy -v /path/to/etc/haproxy:/usr/local/etc/haproxy:ro --sysctl net.ipv4.ip_unprivileged_port_start=0 haproxy:2.3
Note that your host's /path/to/etc/haproxy
folder should be populated with a file named haproxy.cfg
. If this configuration file refers to any other files within that folder then you should ensure that they also exist (e.g. template files such as 400.http
, 404.http
, and so forth). However, many minimal configurations do not require any supporting files.
If you used a bind mount for the config and have edited your haproxy.cfg
file, you can use HAProxy's graceful reload feature by sending a SIGHUP
to the container:
$ docker kill -s HUP my-running-haproxy
The entrypoint script in the image checks for running the command haproxy
and replaces it with haproxy-systemd-wrapper
from HAProxy upstream which takes care of signal handling to do the graceful reload. Under the hood this uses the -sf
option of haproxy
so "there are two small windows of a few milliseconds each where it is possible that a few connection failures will be noticed during high loads" (see Stopping and restarting HAProxy).
The haproxy
images come in many flavors, each designed for a specific use case.
This is the defacto image. If you are unsure about what your needs are, you probably want to use this one. It is designed to be used both as a throw away container (mount your source code and start the container to start your app), as well as the base to build other images off of.
Some of these tags may have names like bullseye or buster in them. These are the suite code names for releases of Debian and indicate which release the image is based on. If your image needs to install any additional packages beyond what comes with the image, you'll likely want to specify one of these explicitly to minimize breakage when there are new releases of Debian.
This image is based on the popular Alpine Linux project, available in the alpine
official image. Alpine Linux is much smaller than most distribution base images (~5MB), and thus leads to much slimmer images in general.
This variant is useful when final image size being as small as possible is your primary concern. The main caveat to note is that it does use musl libc instead of glibc and friends, so software will often run into issues depending on the depth of their libc requirements/assumptions. See this Hacker News comment thread for more discussion of the issues that might arise and some pro/con comparisons of using Alpine-based images.
To minimize image size, it's uncommon for additional related tools (such as git
or bash
) to be included in Alpine-based images. Using this image as a base, add the things you need in your own Dockerfile (see the alpine
image description for examples of how to install packages if you are unfamiliar).
View license information for the software contained in this image.
As with all Docker images, these likely also contain other software which may be under other licenses (such as Bash, etc from the base distribution, along with any direct or indirect dependencies of the primary software being contained).
Some additional license information which was able to be auto-detected might be found in the repo-info
repository's haproxy/
directory.
As for any pre-built image usage, it is the image user's responsibility to ensure that any use of this image complies with any relevant licenses for all software contained within.