Hi Benjamin, > 1) Logging performance data: > A) How long before the page started putting out data? (implying that > the > server side is done processing, though not necessarily) > B) How long did the whole cycle take from initial connection to end of > download?
Turn on "option httplog", these information are available (read the relevant part of the documentation to find where). > 2) Is there a way to anti-DDOS based on a cookie? (Really, we want to filter > based on user/login but that isn't actually part of the HTTP session, that's > determined by the cookie) W You can get inspired by these two articles: http://blog.haproxy.com/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/ http://blog.haproxy.com/2013/04/26/wordpress-cms-brute-force-protection-with-haproxy/ It applies DDOS protection matching IPs. But HAProxy could perform the same on a cookie. > 5) Is there a relatively simple way to get "true HA" with a redundant load > balancer? We have two identical machines side-by-side running EL6 and haproxy, > one is a disk dd of the other. In the past we used heartbeat with limited > success; pacemaker has been very problematic for us. For now, we're managing > manually. We use keepalived a lot :) Baptiste
