Hi Shane,
> I have run into a problem using HAProxy with SSL termination that has
> me completely stumped.
>
> 40-60% of the requests fail and I cannot seem to determine the reason
> for the failure/inconsistent results.
Looks like haproxy is interpreting the those failed requests as plaintext,
thats why the handshake (and everything else) fails.
I have no idea why this happens.
Can you:
- post the output of haproxy -vv
- capture the ssl handshake (failed and ok) with ssldump(-i lo)
- run it through "strace -tt" without haproxy debugs
Lukas
