You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The tcp-request content accept line will accept the connection if there is no "Deny" intention in Consul forbidding it. However, there is no rule that rejects the connection otherwise. So, all requests are accepted, no matter whether the are denied in Consul.
Workaround:
Editing the configuration so that tcp-request content accept if is replaced with tcp-request content reject unless fixes it:
With Intentions enabled, the HAProxy configuration that's auto-generated contains this in the
frontend
for the local service:The
tcp-request content accept
line will accept the connection if there is no "Deny" intention in Consul forbidding it. However, there is no rule that rejects the connection otherwise. So, all requests are accepted, no matter whether the are denied in Consul.Workaround:
Editing the configuration so that
tcp-request content accept if
is replaced withtcp-request content reject unless
fixes it:The text was updated successfully, but these errors were encountered: