proxy_protocol on ssl_passthrough listener

[justinsb]

Move proxy_protocol to listener.

Fix #207

[k8s-reviewable]

This change is 

[justinsb]

Without this PR, running behind an ELB with proxy-protocol enabled, we see the inbound request, and nginx immediately responds with:

HTTP/1.1 400 Bad Request
Server: nginx/1.11.9
Date: Sat, 04 Feb 2017 07:35:51 GMT
Content-Type: text/html
Content-Length: 173
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload

<html>
<head><title>400 Bad Request</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.11.9</center>
</body>
</html>

With this PR, ssl passthrough when the ELB has proxy protocol enabled works.

I believe that with the proxy_protocol in its current position, nginx adds the proxy protocol header before forwarding. This may actually be useful in some circumstances, but is not what we are expecting here (I believe).

[coveralls]

Coverage remained the same at 44.249% when pulling 6fa461c on justinsb:use_proxy_protocol into 95d6900 on kubernetes:master.

[justinsb]

I have found a snafu, so marking WIP.

The problem is that the SSL 442 listener also has proxy_protocol, but it should not, because the 443 listener with this PR already removes the header. I think I need to remove proxy_protocol from the 442 listener.

[justinsb]

OK, that was easy! Removed proxy_protocol from 442, marking as no-longer-WIP.

[coveralls]

Coverage increased (+0.2%) to 44.409% when pulling 8d71557 on justinsb:use_proxy_protocol into 95d6900 on kubernetes:master.

[aledbf]

/lgtm

[aledbf]

@justinsb thanks for fixing this.