Trouble defining haproxy_config configuration

Hi everyone.

I’m struggling to get the correct syntax when defining the ‘haproxy_config’ within my rancher-compose.yml. I am basically trying to define the following configuration under haxproxy_config global:

ssl-default-bind-options no-sslv3
ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
ssl-default-server-options no-sslv3
default-server-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

The documentation under http://docs.rancher.com/rancher/rancher-compose/rancher-services/ explains that you can do this but doesn’t go into detail or provide an example of how it should look. I’ve tried several different ways of defining this config but keep getting ‘cannot unmarshal !!map into string’ from rancher-compose.exe which, if I understand correctly, means my config is invalid.

Could anyone give me any pointers?

Many thanks in advance.

I’ve found that the following config does the job:

https-loadbalancer:
  load_balancer_config:
    haproxyConfig:
      global: |- 
        ssl-default-bind-options no-sslv3
        ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
        ssl-default-server-options no-sslv3
        ssl-default-server-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
  default_cert: mycert.co.uk
  health_check:
    port: 42
    interval: 2000
    unhealthy_threshold: 3
    healthy_threshold: 2
    response_timeout: 2000

However, it doesn’t appear to override the existing values in the haproxy.cfg file. It just appends the new settings to the end. It therefore looks like I can’t override these settings.