From 547cf7250800469271f0254f715d90f544e25d77 Mon Sep 17 00:00:00 2001
From: sn0wb0i <sn0wb0i@aaathats3as.com>
Date: Fri, 19 Jul 2019 22:11:52 -0400
Subject: [PATCH] Anycast

---
 LICENSE     | 14 ++++++++++++++
 haproxy.cfg | 12 ++++++++++++
 2 files changed, 26 insertions(+)
 create mode 100644 LICENSE

diff --git a/LICENSE b/LICENSE
new file mode 100644
index 0000000..8c3bdb1
--- /dev/null
+++ b/LICENSE
@@ -0,0 +1,14 @@
+           DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+                   Version 2, December 2004
+ 
+Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
+
+Everyone is permitted to copy and distribute verbatim or modified
+copies of this license document, and changing it is allowed as long
+as the name is changed.
+ 
+           DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
+  TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+ 0. You just DO WHAT THE FUCK YOU WANT TO.
+
diff --git a/haproxy.cfg b/haproxy.cfg
index 42eca0a..f085282 100644
--- a/haproxy.cfg
+++ b/haproxy.cfg
@@ -52,6 +52,18 @@ backend letsencrypt
 	mode http
         server letsencrypt-http 127.0.0.1:12345 verify none
 
+# HTTP (port 80, anycast)
+frontend http-ac-in
+	bind 198.251.90.114:80
+	mode http
+	reqadd X-Forwarded-Proto:\ http
+
+	use_backend letsencrypt-lv1 if { path_beg -i /.well-known/acme-challenge }
+
+backend letsencrypt-lv1
+	mode http
+	server letsencrypt-http 10.250.66.2:12345 verify none
+
 # TCP LB (443)
 frontend 443-in
 	bind 209.141.34.95:443 tfo ssl crt /etc/haproxy/certs