Hi Mark,
> We're willing to use HAProxy 1.5-dev-latest in our new production cluster > (and report bugs if we encounter them). > > Does my reasoning make sense? Any feedback on our architecture would highly > appreciated! HAProxy 1.5 has native SSL support now, there is no need for third party tools like stunnel or stud. You can forward the client ip to the backend servers via X-Forwarded-For or the PROXY protocol just as you wish/your backends prefers, with or without native SSL termination on at HAProxy. Regards, Lukas
