apt purge gnupg apt autoremove --purge apt install gnupg1
grab the latest available LTS release for your distribution
ls -lF /usr/share/keyrings/haproxy.debian.net.gpg # no exist
ls -lF /etc/apt/sources.list.d/haproxy.list # no exist
#apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 95A42FE8353525F9
curl -s https://haproxy.debian.net/bernat.debian.org.gpg | gpg1 --dearmor \
> /usr/share/keyrings/haproxy.debian.net.gpg
codename=`lsb_release -cs 2>/dev/null`
lts=2.8
cat > /etc/apt/sources.list.d/haproxy.list <<EOF deb [signed-by=/usr/share/keyrings/haproxy.debian.net.gpg] http://haproxy.debian.net $codename-backports-$lts main EOF
apt update apt install haproxy=$lts.\* vim-haproxy grep ^haproxy /etc/group grep ^haproxy /etc/passwd ls -lF /etc/rsyslog.d/49-haproxy.conf
ls -lF /etc/haproxy/dhparms.pem # no exist openssl dhparam -out /etc/haproxy/dhparms.pem 2048 chmod 444 /etc/haproxy/dhparms.pem
and eventually generate a self-signed dummy cert.
systemctl status haproxy journalctl -u haproxy.service --since today --no-pager
Debian/Ubuntu HAProxy packages https://haproxy.debian.net/
HAproxy SSL/TLS Warning: Setting tune.ssl.default-dh-param to 1024 by default https://www.digitalocean.com/community/tutorials/haproxy-ssl-tls-warning-setting-tune-ssl-default-dh-param-to-1024-by-default
Common HAProxy Errors https://www.digitalocean.com/community/tutorial_series/common-haproxy-errors
How To Troubleshoot Common HAProxy Errors https://www.digitalocean.com/community/tutorials/how-to-troubleshoot-common-haproxy-errors
Haproxy 2.x openssl/libressl issues with curves bind option (Opnsense) #366 https://github.com/haproxy/haproxy/issues/366
Haproxy TLS configuration https://serverfault.com/questions/941762/haproxy-tls-configuration/941812