Hi! >> Is anything ringing a bell to you? Anything I could do for the app to be >> more responsive in HTTPS? > [...] > You're right, your HAProxy is in tunnel mode, which means it let the > client and the server negociate the keep-alive mode. > Obviously, they did not.
Correct. In case you origin server doesn't support keep-alive, you may be achieve better performance when using option http-server-close [1]. Early adopters may even try the (very new) option http-keep-alive [2]. Anyway, in this case you have to take a look at the client and the server, as Baptiste mentioned. Maybe you have some limitation in your javascript code on the client side, or maybe there is a limitation in the server application. Take a wireshark trace and decode SSL with your private key, then you will be able to understand what side is closing the request. Regards, Lukas [1] http://cbonte.github.io/haproxy-dconv/configuration-1.5.html#option%20http-server-close [2] http://cbonte.github.io/haproxy-dconv/configuration-1.5.html#4.2-option%20http-keep-alive