Mastering HAProxy Logs Redirecting to /var/log/haproxy on Linux
Felipe FerreiraUncategorized






A Beginner-Friendly Guide to Centralizing Your HAProxy Activity Trails

Gain clear insights into your web traffic by learning how to configure HAProxy logs to specifically write to the /var/log/haproxy directory on your Linux system. This guide makes the process straightforward for any user.

Setting Up Your HAProxy Logging Destination

HAProxy acts as a reliable load balancer and proxy server on Linux, distributing network traffic efficiently. Centralizing HAProxy logs to a specific directory like /var/log/haproxy simplifies troubleshooting, security monitoring, and performance analysis for system administrators. This howto will guide you through setting up a dedicated log directory.

Assumptions:

  • You have HAProxy installed.
  • You have root or sudo privileges.

Step-by-step:

  1. Create the log directory if it doesn’t exist: 
    sudo mkdir -p /var/log/haproxy
  2. Set appropriate permissions and ownership for the log directory. Replace ‘haproxy’ with your HAProxy user/group if different: 
    sudo chown haproxy:haproxy /var/log/haproxy
  3. Edit the HAProxy configuration file, typically /etc/haproxy/haproxy.cfg: 
    sudo nano /etc/haproxy/haproxy.cfg

    Or if you prefer vi:

    sudo vi /etc/haproxy/haproxy.cfg
  4. In the global section, add or modify the following lines to direct logs to the local syslog server and then specify the log path. The log directive sends logs to a syslog server (e.g., 127.0.0.1:514), and log-format defines log structure. 
    global
    log         127.0.0.1 local0
    log-format  "%t %s %b %ci:%cp -> %fi:%fp %Tq/%Tw/%Tc/%Tr/%Tt %ST %B %CC %CS %HR %HM %PR %TR %CN %CR %CQ %CS %CP %CD %CO %Cx %CI %IR %RQ %RX %RP %RW %rO %rM %rL %rF %rC %rS %rT %rU %rV %rW %rX %rY %rZ"

    Then, configure your syslog server (e.g., rsyslog) to write local0 messages to the target file. Create /etc/rsyslog.d/haproxy.conf:

    sudo nano /etc/rsyslog.d/haproxy.conf

    Add this content:

    if $programname == 'haproxy' then /var/log/haproxy/haproxy.log
& ~

    Restart rsyslog to apply changes:

    sudo systemctl restart rsyslog

Verification:

  1. Check HAProxy configuration syntax: 
    sudo haproxy -c -f /etc/haproxy/haproxy.cfg

    Expected output: Configuration file is valid

  2. Restart HAProxy service to apply changes: 
    sudo systemctl restart haproxy
  3. Verify logs are being written to the new destination: 
    tail -f /var/log/haproxy/haproxy.log

Common Failure Modes + Fixes:

  • Permissions error: If logs aren’t writing, check directory permissions with ls -ld /var/log/haproxy. Fix with sudo chown haproxy:haproxy /var/log/haproxy.
  • Syntax error in haproxy.cfg: haproxy -c will detect errors. Review the line indicated in the error message.
  • rsyslog not configured: No logs appear in the file. Ensure /etc/rsyslog.d/haproxy.conf is correct and rsyslog is restarted.


Leave a Reply

Your email address will not be published. Required fields are marked *