Here is what I would like to do:
1. Run an instance of haproxy on the WAP (RT-N66U) WAN interface. I want to host multiple sites from behind my WAP.
2. Accept connections from 80 and 443 from 0/0; passing the traffic to the haproxy daemon running on 192.168.0.1:80 or 192.168.0.1:443 (.1 is the LAN IP of the WAP)
3. Have haproxy pass traffic to servers internally (this I have working)
Currently I have this setup running on a separate VM running inside, however its just not that usefule since I plan to use SSL for some services and HTTP for for others. I think its best to just terminate all traffic at the router then allow haproxy to handle the routing to various web servers inside. My problem is that setting a port forward for 0/0:80 to 192.168.0.1:80, the haproxy daemon never gets any traffic. I have confirmed that the daemon is running and listening on the correct port. I can access the haproxy daemon on the correct port, but only from INSIDE my network. the port forward doesn't seem to be working. I wonder if there is a conflict with the TomatoUSB web console so I tried changing the ports for that but still not dice.