Httpv2 certificate check though proxy

matthiasvop · April 16, 2026, 2:18pm

We’re using the httpv2 check to monitor our certificates - which works great.

However, for a small subset of pages, we need to go through an explicit proxy.

When doing so - the certificate age is no longer checked / shown - the check (independent of configured levels) only fails once the certificate actually expires - which obviously caused a short downtime for us.

This is both unexpected and undocumented (as far as i can see) - and i think might be a bug in the httpv2 module.

i suspect it’s caused by the proxy being http - and the help for the check mentions “Not relevant for HTTP connections without TLS.” - which i assume is what applies here (as the connection to the proxy is not https).

The check itself should still be possible though - for example via curl, i get the correct expiration date without problems.

Is this a configuration problem (what flags do i need to set to get this working) - or is it a bug?
(i’m using 2.4.0p26 - if that’s relevant).

dabrain · April 16, 2026, 2:55pm

The httpv2 check is not (yet) able to monitor certificates through a proxy. For those cases you need to take the check certificates.

matthiasvop · April 17, 2026, 7:28am

Hi,
thanks for your response!

The “check certificates” check doesn’t seem to support proxies though - at least not in the 2.4.0p26 (which is the latest 2.4.0 version as far as i’m aware).

dabrain · April 17, 2026, 7:43am

Yes you right. In 2.4 the only option IMHO is the old http check. Starting from 2.5 check cert should have this option, where httpv2 still doesn’t