Re: http-keep-alive broken?

Mon, 30 Dec 2013 18:25:11 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

On 31.12.2013 00:50, Lukas Tribus wrote:
> Hi,
>
>
>
>> Subject: http-keep-alive broken?
>>
>> Hi,
>>
>> I'm using haproxy ss-20131229 to reverse proxy some windows iis server
>> with ntlm-auth enabled (one of them being exchange 2012).
>>
>> While I understood that using 'option http-keep-alive' would make
>> ntlm-auth work, it doesn't work for me. Are there still some issue with
>> http-keep-alive and ntlm-auth?
>
> Honestly I would just use the default tunnel mode for this, so I don't
> have to think about the NTLM crap when choosing keep-alive/load-balancing
> parameters.
>
> If you would like to combine NTLM-auth plus keep-alive, I'd propose
enabling:
>  option prefer-last-server
>
>
http://cbonte.github.io/haproxy-dconv/configuration-1.5.html#4.2-option%20prefer-last-server
>
Yeah that could do the trick. Please also try to set http-keep-alive in
the frontend section.
>
>
> Regards,
>
> Lukas                          
>

cheers
thomas

- -- 
Thomas Heil
- -
Email: [email protected]
Tel:   0176 / 44555622
- --

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQIcBAEBAgAGBQJSwipzAAoJEOH/xsXYK8GtrPoP/3y9GbSEKUvFTZBuZw3RzDSB
mdSWLqJG2fqjziBrAa3HgvoL+4JwyqZ3hUTQ0w0bgv4Nd3vWwfo39crRUMhTjawZ
ooFrpHSMPqb01RfTGlI9xSERnvRBZHGwRpMb2yPKRC8Gt+AYgzhb3YeDr0DGClpe
Uq1I3KiAo6SRM9FNWK/p0HDthPU47/+xu/oDG1v/xyQWDqRPNLsSs810rjcjpW2N
MMqyEOR7OIA5mSM9QkYfCSBkBqyuKcdtrld5fTa0zSgB4zzINn8Yc1k+HOudQoSZ
Ib0uakjd+frhM2WXa5oey/CKl4RxzTVCBCCF+vLnefnShkJWbSioz/5oBBAeJWz6
TrTN0zJtUgZef29PQ4S4q4Z3amXq2/kH7URlysFx9H0LIDpwV49MgVmXGKc7G2ZY
CtEdr6KLH0DyUE8pTesnNhq4nMBYnb1nnrNSX79FQYq1Z7kyZtIq5gq/oEqTU9cL
XmrTcfxhMg26aB7b/gLydkh8dzHrYJn5wPw2uTL3q3W+KMnAUW6tjJpizIy4yN15
cwfdXuqHq2Gjh0o0HqtvWdNUglM1GQocLBftQoL209/gzn+G0vEEK+dGNQ1SfH0T
zNzQh8poCKUY3bAHVbQnDaRDgV0XqalVMS62iEZgnkOOVmmz/0e796nNtaEiinKM
Zkzo7GCTVBeUgDKC9UOt
=oX0F
-----END PGP SIGNATURE-----

Reply via email to