Configuration reference
Defaults CRD
On this page
Selected version
Defaults CRD Configuration reference
HAProxy Unified Gateway adds a defaults section named haproxytech to the load balancer configuration automatically. You can customize this defaults section by applying a Defaults custom resource (CR). The Defaults CRD (custom resource definition) lets you set default settings for timeouts and connection-handling values for all of your routes and gateways in the cluster. The HugConf CRD is used to hook the CR into the load balancer configuration.
Use the Defaults custom resource Jump to heading
With the Defaults custom resource, you can set defaults for your routes and gateways. To use it:
-
Create a file named
defaults.yamland add to it aDefaultscustom resource definition. In this example:- We define a Defaults custom resource named
example-defaults. We’ll create it in thehaproxy-unified-gatewaynamespace, though you can specify a differentnamespace. - We set
merge_strategytooverride. We’ll explain more about this property later in the section Merge Strategy. For this simple example, the behavior is the same for either merge strategy.
Under
spec, we define the settings to add to thedefaultssection namedhaproxytech. Here, we set the load balancing algorithm toleastconnand the number of retries to3:defaults.yamlyamlapiVersion: gate.v3.haproxy.org/v3kind: Defaultsmetadata:name: example-defaultsnamespace: haproxy-unified-gatewayspec:merge_strategy: overrideretries: 3balance:algorithm: leastconnname: haproxytechdefaults.yamlyamlapiVersion: gate.v3.haproxy.org/v3kind: Defaultsmetadata:name: example-defaultsnamespace: haproxy-unified-gatewayspec:merge_strategy: overrideretries: 3balance:algorithm: leastconnname: haproxytechCaution
You can only use one Defaults CR, and its
spec.namemust behaproxytech, as this is the only HAProxydefaultssection that you can add settings to. - We define a Defaults custom resource named
-
Use
kubectl applyto create the CR:nixkubectl apply -f defaults.yamlnixkubectl apply -f defaults.yaml -
Update the
HugConfresource to reference the Defaults custom resource viadefaultsRef. The controller will pick up the changes, apply the configuration, and reload the load balancer automatically with:nixkubectl edit hugconf -n haproxy-unified-gatewaynixkubectl edit hugconf -n haproxy-unified-gatewayAdd a section named
defaultsRefunderspecthat contains the name of the Defaults custom resource and the namespace in which it resides. In this example, the Defaults custom resource is namedexample-defaultsand resides in thehaproxy-unified-gatewaynamespace.yamlapiVersion: gate.v3.haproxy.org/v3kind: HugConfmetadata:name: hugconfnamespace: haproxy-unified-gatewayspec:defaultsRef:name: example-defaultsnamespace: haproxy-unified-gatewaylogging:defaultLevel: InfoyamlapiVersion: gate.v3.haproxy.org/v3kind: HugConfmetadata:name: hugconfnamespace: haproxy-unified-gatewayspec:defaultsRef:name: example-defaultsnamespace: haproxy-unified-gatewaylogging:defaultLevel: InfoSave and exit the editor. The controller will pick up the changes, apply the configuration, and reload the load balancer automatically.
-
Optional: Verify your configuration changes by viewing the load balancer configuration. For example:
nixkubectl exec -n haproxy-unified-gateway $(kubectl get pods -A \| awk '/haproxy-unified-gateway/ && !/default/ && /Running/' \| awk 'NR==1{print $2}') -- cat /usr/local/hug/haproxy.cfgnixkubectl exec -n haproxy-unified-gateway $(kubectl get pods -A \| awk '/haproxy-unified-gateway/ && !/default/ && /Running/' \| awk 'NR==1{print $2}') -- cat /usr/local/hug/haproxy.cfgThe options
balance leastconnandretries 3should now appear in thedefaultssection namedhaproxytech.
Merge strategy Jump to heading
The load balancer settings are generated by combining the following resources, in this order:
- HAProxy Unified Gateway default defaults
- Settings you define via a Defaults custom resource
The HAProxy Unified Gateway default settings are applied first, followed by the the settings you defined via the Defaults CRD. The settings you defined via Defaults CRD are applied according to the merge_strategy you specify in the CR definition. You can set it to either:
append; settings that are lists won’t be replaced by the list you definedoverride; settings that are lists will be completely replaced by the list you defined
Tip
As of version 1.0 of HAProxy Unified Gateway, append only has a real effect for changes to the log_target_list in the custom resource definition. Overriding this list means that only those that you specify in your list will be included, and this default entry won’t be included:
haproxy
haproxy
Troubleshooting Jump to heading
Find solutions to problems you may encounter when using the Defaults CRD.
-
No change occurs; the settings aren’t applied.
- Confirm that you set the
spec.namefield tohaproxytechin the Defaults CR definition. Defaults CRs by all other names are ignored. - Ensure you’ve referenced your Defaults CR in the HugConf CR and specified the correct namespace.
- Confirm that you set the
-
You encounter the following error message:
The Defaults "defaults" is invalid: spec.merge_strategy: Required value- Confirm that you’ve set merge_strategy in your custom resource definition.
Defaults
-
CRD version:
1.0 -
API version:
gate.v3.haproxy.org/v3
abortonclose
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
abortonclose: String # Allowed values are enabled, disabled
accept_invalid_http_request
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
accept_invalid_http_request: String # Allowed values are enabled, disabled
accept_invalid_http_response
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
accept_invalid_http_response: String # Allowed values are enabled, disabled
accept_unsafe_violations_in_http_request
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
accept_unsafe_violations_in_http_request: String # Allowed values are enabled, disabled
accept_unsafe_violations_in_http_response
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
accept_unsafe_violations_in_http_response: String # Allowed values are enabled, disabled
acl_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
acl_list:
- acl_name: String # Allowed pattern: ^[^\s]+$
criterion: String # Allowed pattern: ^[^\s]+$
value: String
adv_check
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
adv_check: String # Allowed values are httpchk, ldap-check, mysql-check, pgsql-check, redis-check, smtpchk, ssl-hello-chk, tcp-check
allbackups
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
allbackups: String # Allowed values are enabled, disabled
backlog
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
backlog: Integer
balance
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
balance:
algorithm: String # Allowed values are first, hash, hdr, leastconn, random, rdp-cookie, roundrobin, source, static-rr, uri, url_param
hash_expression: String
hdr_name: String
hdr_use_domain_only: Boolean
random_draws: Integer
rdp_cookie_name: String # Allowed pattern: ^[^\s]+$
uri_depth: Integer
uri_len: Integer
uri_path_only: Boolean
uri_whole: Boolean
url_param: String # Allowed pattern: ^[^\s]+$
url_param_check_post: Integer
url_param_max_wait: Integer
check_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
check_timeout: Integer
checkcache
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
checkcache: String # Allowed values are enabled, disabled
clflog
[boolean]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
clflog: Boolean
client_fin_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
client_fin_timeout: Integer # Minimum: 0
client_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
client_timeout: Integer # Minimum: 0
clitcpka
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
clitcpka: String # Allowed values are enabled, disabled
clitcpka_cnt
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
clitcpka_cnt: Integer
clitcpka_idle
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
clitcpka_idle: Integer
clitcpka_intvl
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
clitcpka_intvl: Integer
compression
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
compression:
algo-req: String # Allowed values are identity, gzip, deflate, raw-deflate
algorithms: [ String ]
algos-res: [ String ]
direction: String # Allowed values are request, response, both
minsize_req: Integer
minsize_res: Integer
offload: Boolean
types: [ String ]
types-req: [ String ]
types-res: [ String ]
connect_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
connect_timeout: Integer # Minimum: 0
contstats
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
contstats: String # Allowed values are enabled
cookie
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
cookie:
attr:
- value: String # Allowed pattern: ^[^\s]+$
domain:
- value: String # Allowed pattern: ^[^\s]+$
dynamic: Boolean
httponly: Boolean
indirect: Boolean
maxidle: Integer
maxlife: Integer
name: String # Allowed pattern: ^[^\s]+$
nocache: Boolean
postonly: Boolean
preserve: Boolean
secure: Boolean
type: String # Allowed values are rewrite, insert, prefix
default_backend
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
default_backend: String # Allowed pattern: ^[A-Za-z0-9-_.:]+$
default_server
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
default_server:
agent-addr: String # Allowed pattern: ^[^\s]+$
agent-check: String # Allowed values are enabled, disabled
agent-inter: Integer # Minimum: 0
agent-port: Integer # Minimum: 1, Maximum: 65535
agent-send: String
allow_0rtt: Boolean
alpn: String # Allowed pattern: ^[^\s]+$
backup: String # Allowed values are enabled, disabled
cc: String
check: String # Allowed values are enabled, disabled
check-pool-conn-name: String # Allowed pattern: ^[^\s]+$
check-reuse-pool: String # Allowed values are enabled, disabled
check-send-proxy: String # Allowed values are enabled, disabled
check-sni: String # Allowed pattern: ^[^\s]+$
check-ssl: String # Allowed values are enabled, disabled
check_alpn: String # Allowed pattern: ^[^\s]+$
check_proto: String # Allowed pattern: ^[^\s]+$
check_sni_auto: String # Allowed values are enabled, disabled
check_via_socks4: String # Allowed values are enabled, disabled
ciphers: String
ciphersuites: String
client_sigalgs: String
cookie: String # Allowed pattern: ^[^\s]+$
crl_file: String
curves: String
downinter: Integer # Minimum: 0
error_limit: Integer
fall: Integer
fastinter: Integer # Minimum: 0
force_sslv3: String # Allowed values are enabled, disabled
force_tlsv10: String # Allowed values are enabled, disabled
force_tlsv11: String # Allowed values are enabled, disabled
force_tlsv12: String # Allowed values are enabled, disabled
force_tlsv13: String # Allowed values are enabled, disabled
guid: String # Allowed pattern: ^[A-Za-z0-9-_.:]+$
hash_key: String # Allowed pattern: ^[^\s]+$
health_check_address: String # Allowed pattern: ^[^\s]+$
health_check_port: Integer # Minimum: 1, Maximum: 65535
idle_ping: Integer # Minimum: 0
init-addr: String # Allowed pattern: ^[^\s]+$
init-state: String # Allowed values are fully-up, up, down, fully-down
inter: Integer # Minimum: 0
ktls: String # Allowed values are on, off
log-bufsize: Integer
log_proto: String # Allowed values are legacy, octet-count
maintenance: String # Allowed values are enabled, disabled
max_reuse: Integer
maxconn: Integer
maxqueue: Integer
minconn: Integer
namespace: String
no_sslv3: String # Allowed values are enabled, disabled
no_tlsv10: String # Allowed values are enabled, disabled
no_tlsv11: String # Allowed values are enabled, disabled
no_tlsv12: String # Allowed values are enabled, disabled
no_tlsv13: String # Allowed values are enabled, disabled
no_verifyhost: String # Allowed values are enabled, disabled
npn: String
observe: String # Allowed values are layer4, layer7
on-error: String # Allowed values are fastinter, fail-check, sudden-death, mark-down
on-marked-down: String # Allowed values are shutdown-sessions
on-marked-up: String # Allowed values are shutdown-backup-sessions
pool_conn_name: String # Allowed pattern: ^[^\s]+$
pool_low_conn: Integer
pool_max_conn: Integer
pool_purge_delay: Integer # Minimum: 0
proto: String # Allowed pattern: ^[^\s]+$
proxy-v2-options: [ String ]
redir: String
renegotiate: String # Allowed values are enabled, disabled
resolve-net: String # Allowed pattern: ^([A-Za-z0-9.:/]+)(,[A-Za-z0-9.:/]+)*$
resolve-prefer: String # Allowed values are ipv4, ipv6
resolve_opts: String # Allowed pattern: ^(allow-dup-ip|ignore-weight|prevent-dup-ip)(,(allow-dup-ip|ignore-weight|prevent-dup-ip))*$
resolvers: String # Allowed pattern: ^[^\s]+$
rise: Integer
send-proxy: String # Allowed values are enabled, disabled
send-proxy-v2: String # Allowed values are enabled, disabled
send_proxy_v2_ssl: String # Allowed values are enabled, disabled
send_proxy_v2_ssl_cn: String # Allowed values are enabled, disabled
set-proxy-v2-tlv-fmt:
id: String
value: String
shard: Integer
sigalgs: String
slowstart: Integer # Minimum: 0
sni: String # Allowed pattern: ^[^\s]+$
sni_auto: String # Allowed values are enabled, disabled
socks4: String # Allowed pattern: ^[^\s]+$
source: String
ssl: String # Allowed values are enabled, disabled
ssl_cafile: String # Allowed pattern: ^[^\s]+$
ssl_certificate: String # Allowed pattern: ^[^\s]+$
ssl_max_ver: String # Allowed values are SSLv3, TLSv1.0, TLSv1.1, TLSv1.2, TLSv1.3
ssl_min_ver: String # Allowed values are SSLv3, TLSv1.0, TLSv1.1, TLSv1.2, TLSv1.3
ssl_reuse: String # Allowed values are enabled, disabled
sslv3: String # Allowed values are enabled, disabled
stick: String # Allowed values are enabled, disabled
strict-maxconn: Boolean
tcp_md5sig: String # Allowed pattern: ^[^\s]+$
tcp_ut: Integer # Minimum: 0
tfo: String # Allowed values are enabled, disabled
tls_tickets: String # Allowed values are enabled, disabled
tlsv10: String # Allowed values are enabled, disabled
tlsv11: String # Allowed values are enabled, disabled
tlsv12: String # Allowed values are enabled, disabled
tlsv13: String # Allowed values are enabled, disabled
track: String
verify: String # Allowed values are none, required
verifyhost: String
weight: Integer
ws: String # Allowed values are auto, h1, h2
disable_h2_upgrade
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
disable_h2_upgrade: String # Allowed values are enabled, disabled
disabled
[boolean]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
disabled: Boolean
dontlog_normal
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
dontlog_normal: String # Allowed values are enabled, disabled
dontlognull
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
dontlognull: String # Allowed values are enabled, disabled
dynamic_cookie_key
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
dynamic_cookie_key: String # Allowed pattern: ^[^\s]+$
email_alert
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
email_alert:
from: String # Allowed pattern: ^\S+@\S+$
level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug
mailers: String
myhostname: String
to: String # Allowed pattern: ^\S+@\S+$
enabled
[boolean]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
enabled: Boolean
error_files
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
error_files:
- code: Integer # Allowed values are 200, 400, 401, 403, 404, 405, 407, 408, 410, 413, 425, 429, 500, 501, 502, 503, 504
file: String
error_log_format
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
error_log_format: String
errorfiles_from_http_errors
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
errorfiles_from_http_errors:
- codes: [ Integer ]
name: String
errorloc302
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
errorloc302:
code: Integer # Allowed values are 200, 400, 401, 403, 404, 405, 407, 408, 410, 413, 425, 429, 500, 501, 502, 503, 504
url: String
errorloc303
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
errorloc303:
code: Integer # Allowed values are 200, 400, 401, 403, 404, 405, 407, 408, 410, 413, 425, 429, 500, 501, 502, 503, 504
url: String
external_check
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
external_check: String # Allowed values are enabled, disabled
external_check_command
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
external_check_command: String # Allowed pattern: ^[^\s]+$
external_check_path
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
external_check_path: String # Allowed pattern: ^[^\s]+$
forwardfor
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
forwardfor:
enabled: String # Allowed values are enabled
except: String # Allowed pattern: ^[^\s]+$
header: String # Allowed pattern: ^[^\s]+$
ifnone: Boolean
from
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
from: String # Allowed pattern: ^[A-Za-z0-9-_.:]+$
fullconn
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
fullconn: Integer
h1_case_adjust_bogus_client
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
h1_case_adjust_bogus_client: String # Allowed values are enabled, disabled
h1_case_adjust_bogus_server
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
h1_case_adjust_bogus_server: String # Allowed values are enabled, disabled
hash_balance_factor
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
hash_balance_factor: Integer
hash_preserve_affinity
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
hash_preserve_affinity: String # Allowed values are always, maxconn, maxqueue
hash_type
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
hash_type:
function: String # Allowed values are sdbm, djb2, wt6, crc32, none
method: String # Allowed values are map-based, consistent
modifier: String # Allowed values are avalanche
http-buffer-request
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http-buffer-request: String # Allowed values are enabled, disabled
http-drop-request-trailers
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http-drop-request-trailers: String # Allowed values are enabled, disabled
http-drop-response-trailers
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http-drop-response-trailers: String # Allowed values are enabled, disabled
http-use-htx
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http-use-htx: String # Allowed values are enabled, disabled
http_after_response_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_after_response_rule_list:
- acl_file: String # Allowed pattern: ^[^\s]+$
acl_keyfmt: String # Allowed pattern: ^[^\s]+$
capture_id: Integer
capture_len: Integer
capture_sample: String # Allowed pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
cond: String # Allowed values are if, unless
cond_test: String
hdr_format: String
hdr_match: String
hdr_method: String
hdr_name: String
log_level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug, silent
map_file: String # Allowed pattern: ^[^\s]+$
map_keyfmt: String # Allowed pattern: ^[^\s]+$
map_valuefmt: String # Allowed pattern: ^[^\s]+$
sc_expr: String
sc_id: Integer
sc_idx: Integer
sc_int: Integer
status: Integer # Minimum: 100, Maximum: 999
status_reason: String
strict_mode: String # Allowed values are on, off
type: String # Allowed values are add-header, allow, capture, del-acl, del-header, del-map, replace-header, replace-value, sc-add-gpc, sc-inc-gpc, sc-inc-gpc0, sc-inc-gpc1, sc-set-gpt, sc-set-gpt0, set-header, set-log-level, set-map, set-status, set-var, set-var-fmt, strict-mode, unset-var, do-log
var_expr: String
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
http_check_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_check_list:
- addr: String # Allowed pattern: ^[^\s]+$
alpn: String # Allowed pattern: ^[^\s]+$
body: String
body_log_format: String
check_comment: String
default: Boolean
error_status: String # Allowed values are L7OKC, L7RSP, L7STS, L6RSP, L4CON
exclamation_mark: Boolean
headers:
- fmt: String
name: String
linger: Boolean
match: String # Allowed values are status, rstatus, hdr, fhdr, string, rstring
method: String # Allowed values are HEAD, PUT, POST, GET, TRACE, PATCH, DELETE, CONNECT, OPTIONS
min_recv: Integer
ok_status: String # Allowed values are L7OK, L7OKC, L6OK, L4OK
on_error: String
on_success: String
pattern: String
port: Integer # Minimum: 1, Maximum: 65535
port_string: String
proto: String
send_proxy: Boolean
sni: String
ssl: Boolean
status-code: String
tout_status: String # Allowed values are L7TOUT, L6TOUT, L4TOUT
type: String # Allowed values are comment, connect, disable-on-404, expect, send, send-state, set-var, set-var-fmt, unset-var
uri: String
uri_log_format: String
var_expr: String
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
version: String
via_socks4: Boolean
http_connection_mode
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_connection_mode: String # Allowed values are httpclose, http-server-close, http-keep-alive
http_error_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_error_rule_list:
return_content: String
return_content_format: String # Allowed values are default-errorfiles, errorfile, errorfiles, file, lf-file, string, lf-string
return_content_type: String
return_hdrs:
- fmt: String
name: String
status: Integer # Allowed values are 200, 400, 401, 403, 404, 405, 407, 408, 410, 413, 425, 429, 500, 501, 502, 503, 504
type: String # Allowed values are status
http_ignore_probes
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_ignore_probes: String # Allowed values are enabled, disabled
http_keep_alive_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_keep_alive_timeout: Integer # Minimum: 0
http_no_delay
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_no_delay: String # Allowed values are enabled, disabled
http_pretend_keepalive
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_pretend_keepalive: String # Allowed values are enabled, disabled
http_request_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_request_rule_list:
- acl_file: String # Allowed pattern: ^[^\s]+$
acl_keyfmt: String # Allowed pattern: ^[^\s]+$
auth_realm: String # Allowed pattern: ^[^\s]+$
bandwidth_limit_limit: String
bandwidth_limit_name: String
bandwidth_limit_period: String
cache_name: String # Allowed pattern: ^[^\s]+$
capture_id: Integer
capture_len: Integer
capture_sample: String # Allowed pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
cond: String # Allowed values are if, unless
cond_test: String
deny_status: Integer # Minimum: 200, Maximum: 599
expr: String
hdr_format: String
hdr_match: String
hdr_method: String
hdr_name: String
hint_format: String # Allowed pattern: ^[^\s]+$
hint_name: String # Allowed pattern: ^[^\s]+$
log_level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug, silent
lua_action: String # Allowed pattern: ^[^\s]+$
lua_params: String
map_file: String # Allowed pattern: ^[^\s]+$
map_keyfmt: String # Allowed pattern: ^[^\s]+$
map_valuefmt: String # Allowed pattern: ^[^\s]+$
mark_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
method_fmt: String # Allowed pattern: ^[^\s]+$
nice_value: Integer # Minimum: -1024, Maximum: 1024
normalizer: String # Allowed values are fragment-encode, fragment-strip, path-merge-slashes, path-strip-dot, path-strip-dotdot, percent-decode-unreserved, percent-to-uppercase, query-sort-by-name
normalizer_full: Boolean
normalizer_strict: Boolean
path_fmt: String # Allowed pattern: ^[^\s]+$
path_match: String # Allowed pattern: ^[^\s]+$
protocol: String # Allowed values are ipv4, ipv6
query-fmt: String
redir_code: Integer # Allowed values are 301, 302, 303, 307, 308
redir_option: String
redir_type: String # Allowed values are location, prefix, scheme
redir_value: String # Allowed pattern: ^[^\s]+$
resolvers: String
return_content: String
return_content_format: String # Allowed values are default-errorfiles, errorfile, errorfiles, file, lf-file, string, lf-string
return_content_type: String
return_hdrs:
- fmt: String
name: String
return_status_code: Integer # Minimum: 200, Maximum: 599
rst_ttl: Integer
sc_expr: String
sc_id: Integer
sc_idx: Integer
sc_int: Integer
service_name: String
spoe_engine: String # Allowed pattern: ^[^\s]+$
spoe_group: String # Allowed pattern: ^[^\s]+$
strict_mode: String # Allowed values are on, off
timeout: String
timeout_type: String # Allowed values are server, tunnel, client
tos_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
track_sc_key: String # Allowed pattern: ^[^\s]+$
track_sc_stick_counter: Integer
track_sc_table: String # Allowed pattern: ^[^\s]+$
type: String # Allowed values are add-acl, add-header, allow, auth, cache-use, capture, del-acl, del-header, del-map, deny, disable-l7-retry, do-resolve, early-hint, lua, normalize-uri, pause, redirect, reject, replace-header, replace-path, replace-pathq, replace-uri, replace-value, return, sc-add-gpc, sc-inc-gpc, sc-inc-gpc0, sc-inc-gpc1, sc-set-gpt, sc-set-gpt0, send-spoe-group, set-bc-mark, set-bc-tos, set-dst, set-dst-port, set-fc-mark, set-fc-tos, set-header, set-log-level, set-map, set-mark, set-method, set-nice, set-path, set-pathq, set-priority-class, set-priority-offset, set-query, set-src, set-src-port, set-timeout, set-tos, set-uri, set-var, set-var-fmt, silent-drop, strict-mode, tarpit, track-sc, unset-var, use-service, wait-for-body, wait-for-handshake, set-bandwidth-limit, set-retries, do-log
uri-fmt: String
uri-match: String
var_expr: String
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
wait_at_least: Integer
wait_time: Integer # Minimum: 0
http_request_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_request_timeout: Integer # Minimum: 0
http_response_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_response_rule_list:
- acl_file: String # Allowed pattern: ^[^\s]+$
acl_keyfmt: String # Allowed pattern: ^[^\s]+$
bandwidth_limit_limit: String
bandwidth_limit_name: String
bandwidth_limit_period: String
cache_name: String # Allowed pattern: ^[^\s]+$
capture_id: Integer
capture_sample: String # Allowed pattern: ^[^\s]+$
cond: String # Allowed values are if, unless
cond_test: String
deny_status: Integer # Minimum: 200, Maximum: 599
expr: String
hdr_format: String
hdr_match: String
hdr_method: String
hdr_name: String
log_level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug, silent
lua_action: String # Allowed pattern: ^[^\s]+$
lua_params: String
map_file: String # Allowed pattern: ^[^\s]+$
map_keyfmt: String # Allowed pattern: ^[^\s]+$
map_valuefmt: String # Allowed pattern: ^[^\s]+$
mark_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
nice_value: Integer # Minimum: -1024, Maximum: 1024
redir_code: Integer # Allowed values are 301, 302, 303, 307, 308
redir_option: String
redir_type: String # Allowed values are location, prefix, scheme
redir_value: String # Allowed pattern: ^[^\s]+$
return_content: String
return_content_format: String # Allowed values are default-errorfiles, errorfile, errorfiles, file, lf-file, string, lf-string
return_content_type: String
return_hdrs:
- fmt: String
name: String
return_status_code: Integer # Minimum: 200, Maximum: 599
rst_ttl: Integer
sc_expr: String
sc_id: Integer
sc_idx: Integer
sc_int: Integer
spoe_engine: String # Allowed pattern: ^[^\s]+$
spoe_group: String # Allowed pattern: ^[^\s]+$
status: Integer # Minimum: 100, Maximum: 999
status_reason: String
strict_mode: String # Allowed values are on, off
timeout: String
timeout_type: String # Allowed values are server, tunnel, client
tos_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
track_sc_key: String # Allowed pattern: ^[^\s]+$
track_sc_stick_counter: Integer
track_sc_table: String # Allowed pattern: ^[^\s]+$
type: String # Allowed values are add-acl, add-header, allow, cache-store, capture, del-acl, del-header, del-map, deny, lua, pause, redirect, replace-header, replace-value, return, sc-add-gpc, sc-inc-gpc, sc-inc-gpc0, sc-inc-gpc1, sc-set-gpt, sc-set-gpt0, send-spoe-group, set-fc-mark, set-fc-tos, set-header, set-log-level, set-map, set-mark, set-nice, set-status, set-timeout, set-tos, set-var, set-var-fmt, silent-drop, strict-mode, track-sc, unset-var, wait-for-body, set-bandwidth-limit, do-log
var_expr: String
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
wait_at_least: Integer
wait_time: Integer # Minimum: 0
http_restrict_req_hdr_names
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_restrict_req_hdr_names: String # Allowed values are preserve, delete, reject
http_reuse
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_reuse: String # Allowed values are aggressive, always, never, safe
http_send_name_header
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_send_name_header: String
http_use_proxy_header
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
http_use_proxy_header: String # Allowed values are enabled, disabled
httpchk_params
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
httpchk_params:
host: String
method: String # Allowed values are HEAD, PUT, POST, GET, TRACE, PATCH, DELETE, CONNECT, OPTIONS
uri: String # Allowed pattern: ^[^ ]*$
version: String
httplog
[boolean]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
httplog: Boolean
httpslog
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
httpslog: String # Allowed values are enabled, disabled
idle_close_on_response
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
idle_close_on_response: String # Allowed values are enabled, disabled
independent_streams
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
independent_streams: String # Allowed values are enabled, disabled
load_server_state_from_file
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
load_server_state_from_file: String # Allowed values are global, local, none
log_format
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_format: String
log_format_sd
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_format_sd: String
log_health_checks
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_health_checks: String # Allowed values are enabled, disabled
log_separate_errors
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_separate_errors: String # Allowed values are enabled, disabled
log_steps
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_steps: [ String ]
log_tag
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_tag: String # Allowed pattern: ^[^\s]+$
log_target_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
log_target_list:
- address: String # Allowed pattern: ^[^\s]+$
facility: String # Allowed values are kern, user, mail, daemon, auth, syslog, lpr, news, uucp, cron, auth2, ftp, ntp, audit, alert, cron2, local0, local1, local2, local3, local4, local5, local6, local7
format: String # Allowed values are local, rfc3164, rfc5424, priority, short, timed, iso, raw
global: Boolean
length: Integer
level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug
minlevel: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug
nolog: Boolean
profile: String
sample_range: String
sample_size: Integer
logasap
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
logasap: String # Allowed values are enabled, disabled
max_keep_alive_queue
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
max_keep_alive_queue: Integer
maxconn
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
maxconn: Integer
merge_strategy
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
merge_strategy: String # Allowed values are override, append
mode
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
mode: String # Allowed values are tcp, http, log
monitor_uri
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
monitor_uri: String
mysql_check_params
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
mysql_check_params:
client_version: String # Allowed values are pre-41, post-41
username: String
name
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
name: String # Allowed pattern: ^[A-Za-z0-9-_.:]+$
nolinger
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
nolinger: String # Allowed values are enabled, disabled
originalto
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
originalto:
enabled: String # Allowed values are enabled
except: String # Allowed pattern: ^[^\s]+$
header: String # Allowed pattern: ^[^\s]+$
persist
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
persist: String # Allowed values are enabled, disabled
persist_rule
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
persist_rule:
rdp_cookie_name: String # Allowed pattern: ^[^\s]+$
type: String # Allowed values are rdp-cookie
pgsql_check_params
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
pgsql_check_params:
username: String
prefer_last_server
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
prefer_last_server: String # Allowed values are enabled, disabled
queue_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
queue_timeout: Integer # Minimum: 0
quic_initial_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
quic_initial_rule_list:
- cond: String # Allowed values are if, unless
cond_test: String
type: String # Allowed values are reject, accept, send-retry, dgram-drop
redispatch
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
redispatch:
enabled: String # Allowed values are enabled, disabled
interval: Integer
retries
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
retries: Integer
retry_on
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
retry_on: String
server_fin_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
server_fin_timeout: Integer # Minimum: 0
server_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
server_timeout: Integer # Minimum: 0
smtpchk_params
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
smtpchk_params:
domain: String
hello: String
socket_stats
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
socket_stats: String # Allowed values are enabled, disabled
source
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
source:
address: String
address_second: String
hdr: String
interface: String
occ: String
port: Integer # Minimum: 1, Maximum: 65535
port_second: Integer # Minimum: 1, Maximum: 65535
usesrc: String # Allowed values are address, client, clientip, hdr_ip
splice_auto
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
splice_auto: String # Allowed values are enabled, disabled
splice_request
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
splice_request: String # Allowed values are enabled, disabled
splice_response
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
splice_response: String # Allowed values are enabled, disabled
srvtcpka
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
srvtcpka: String # Allowed values are enabled, disabled
srvtcpka_cnt
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
srvtcpka_cnt: Integer
srvtcpka_idle
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
srvtcpka_idle: Integer
srvtcpka_intvl
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
srvtcpka_intvl: Integer
stats_options
[object]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
stats_options:
stats_admin: Boolean
stats_admin_cond: String # Allowed values are if, unless
stats_admin_cond_test: String
stats_auths:
- passwd: String
user: String
stats_enable: Boolean
stats_hide_version: Boolean
stats_http_requests:
- cond: String
cond_test: String
realm: String
type: String # Allowed values are allow, deny, auth
stats_maxconn: Integer # Minimum: 1
stats_realm: Boolean
stats_realm_realm: String
stats_refresh_delay: Integer # Minimum: 0
stats_show_desc: String
stats_show_legends: Boolean
stats_show_modules: Boolean
stats_show_node_name: String # Allowed pattern: ^[^\s]+$
stats_uri_prefix: String # Allowed pattern: ^[^\s]+$
tarpit_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tarpit_timeout: Integer # Minimum: 0
tcp_check_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcp_check_rule_list:
- action: String # Allowed values are comment, connect, expect, send, send-lf, send-binary, send-binary-lf, set-var, set-var-fmt, unset-var
addr: String # Allowed pattern: ^[^\s]+$
alpn: String # Allowed pattern: ^[^\s]+$
check_comment: String
data: String
default: Boolean
error_status: String # Allowed values are L7OKC, L7RSP, L7STS, L6RSP, L4CON
exclamation_mark: Boolean
fmt: String
hex_fmt: String
hex_string: String
linger: Boolean
match: String # Allowed values are string, rstring, string-lf, binary, rbinary, binary-lf
min_recv: Integer
ok_status: String # Allowed values are L7OK, L7OKC, L6OK, L4OK
on_error: String
on_success: String
pattern: String
port: Integer # Minimum: 1, Maximum: 65535
port_string: String
proto: String
send_proxy: Boolean
sni: String
ssl: Boolean
status-code: String
tout_status: String # Allowed values are L7TOUT, L6TOUT, L4TOUT
var_expr: String
var_fmt: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
via_socks4: Boolean
tcp_request_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcp_request_rule_list:
- action: String # Allowed values are accept, attach-srv, capture, do-resolve, expect-netscaler-cip, expect-proxy, lua, reject, sc-add-gpc, sc-inc-gpc, sc-inc-gpc0, sc-inc-gpc1, sc-set-gpt, sc-set-gpt0, send-spoe-group, set-bandwidth-limit, set-bc-mark, set-bc-tos, set-dst-port, set-dst, set-fc-mark, set-fc-tos, set-log-level, set-mark, set-nice, set-priority-class, set-priority-offset, set-src, set-src-port, set-tos, set-var, set-var-fmt, silent-drop, switch-mode, track-sc, unset-var, use-service, set-retries, do-log
bandwidth_limit_limit: String
bandwidth_limit_name: String
bandwidth_limit_period: String
capture_len: Integer
capture_sample: String # Allowed pattern: ^(?:[A-Za-z]+\("([A-Za-z\s]+)"\)|[A-Za-z]+)
cond: String # Allowed values are if, unless
cond_test: String
expr: String
gpt_value: String
log_level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug, silent
lua_action: String # Allowed pattern: ^[^\s]+$
lua_params: String
mark_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
nice_value: Integer # Minimum: -1024, Maximum: 1024
resolve_protocol: String # Allowed values are ipv4, ipv6
resolve_resolvers: String
resolve_var: String
rst_ttl: Integer
sc_idx: String
sc_inc_id: String
sc_int: Integer
server_name: String
service_name: String
spoe_engine_name: String
spoe_group_name: String
switch_mode_proto: String
timeout: Integer
tos_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
track_key: String
track_stick_counter: Integer
track_table: String
type: String # Allowed values are connection, content, inspect-delay, session
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
tcp_response_rule_list
[array]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcp_response_rule_list:
- action: String # Allowed values are accept, close, lua, reject, sc-add-gpc, sc-inc-gpc, sc-inc-gpc0, sc-inc-gpc1, sc-set-gpt, sc-set-gpt0, send-spoe-group, set-bandwidth-limit, set-fc-mark, set-fc-tos, set-log-level, set-mark, set-nice, set-tos, set-var, set-var-fmt, silent-drop, unset-var, do-log
bandwidth_limit_limit: String
bandwidth_limit_name: String
bandwidth_limit_period: String
cond: String # Allowed values are if, unless
cond_test: String
expr: String
log_level: String # Allowed values are emerg, alert, crit, err, warning, notice, info, debug, silent
lua_action: String # Allowed pattern: ^[^\s]+$
lua_params: String
mark_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
nice_value: Integer # Minimum: -1024, Maximum: 1024
rst_ttl: Integer
sc_expr: String
sc_id: Integer
sc_idx: Integer
sc_int: Integer
spoe_engine: String # Allowed pattern: ^[^\s]+$
spoe_group: String # Allowed pattern: ^[^\s]+$
timeout: Integer
tos_value: String # Allowed pattern: ^(0x[0-9A-Fa-f]+|[0-9]+)$
type: String # Allowed values are content, inspect-delay
var_format: String
var_name: String # Allowed pattern: ^[^\s]+$
var_scope: String # Allowed pattern: ^[^\s]+$
tcp_smart_accept
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcp_smart_accept: String # Allowed values are enabled, disabled
tcp_smart_connect
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcp_smart_connect: String # Allowed values are enabled, disabled
tcpka
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcpka: String # Allowed values are enabled, disabled
tcplog
[boolean]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tcplog: Boolean
transparent
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
transparent: String # Allowed values are enabled, disabled
tunnel_timeout
[integer]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
tunnel_timeout: Integer # Minimum: 0
unique_id_format
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
unique_id_format: String
unique_id_header
[string]
apiVersion: "gate.v3.haproxy.org/v3"
kind: Defaults
metadata:
name: example-defaults
namespace: default
spec:
unique_id_header: String