Comment 3 for bug 1846714

Set up HAProxy with the attached configuration. The server-template directive will generate 3 upstreams based on the DNS-answers for letsencrypt.status.io. This is basic HAProxy DNS-service-discovery.

If you now check back with the stats socket or the webinterface, you will notice that while the first upstream will be L7OK, all the following upstreams are going to be L6RSP, doe to the fact that the check-sni setting does not get replicated for any of the generated upstreams than the first.

The patch fixes this so the check-sni argument gets applied to all generated upstreams. With a patched version of HAProxy all the 3 upstreams will be L7OK.