Hello, Is your problem related to health check only or related to your mutual authentication not working with HAProxy?
Have you tried with a simple TCP health check? Otherwise you could use stunnel in client mode and run a HTTP check which would be encrypted by stunnel before hitting the web server. cheers On Thu, Aug 30, 2012 at 9:36 PM, Manley,Jason <[email protected]> wrote: > Hello. I am the support engineer for a cloud based platform running HAProxy > to load balance to nodes running Gigaspaces. One of our gigaspaces feeds > will be using Mutual Authentication HTTPS, and the health check, even with > option ssl-hello-chk enabled gives errors about bad SSL handshake. > > What are some steps we can consider in running stunnel on the same node as > HAProxy to perform SSL termination there, and have HAProxy forward normal > HTTP back to the backend servers? And is this a good idea? > > Jason Manley | System Engineer | Cerner Corporation | > [email protected] | WWW.CERNER.COM | 816-201-8686 > > > > ________________________________ > CONFIDENTIALITY NOTICE This message and any included attachments are from > Cerner Corporation and are intended only for the addressee. The information > contained in this message is confidential and may constitute inside or > non-public information under international, federal, or state securities > laws. Unauthorized forwarding, printing, copying, distribution, or use of > such information is strictly prohibited and may be unlawful. If you are not > the addressee, please promptly delete this message and notify the sender of > the delivery error by e-mail or you may call Cerner's corporate offices in > Kansas City, Missouri, U.S.A at (+1) (816)221-1024.
