Hi.
I am running haproxy on 2 ubuntu 12.04 LTS boxes with some IP managed
by keepalived.
One week ago I updated many packages including haproxy that is now
version 1.5.12.
Since then, the "peer" traffic between the nodes increased a lot.
If both nodes are active, each one owning some IPs, the 'peers' traffic
between the nodes seems higher (10x) than before the package update.
Moreover, even if one of the peers does not have any active IP, i.e.
haproxy is doing nothing, the outgoing traffic measured on the NIC
(SNMP) is about 500-600kb/s.
If I disable the 'peers' section, the outgoing traffic drops to 60 kb/s.
The behaviour is similar changing the active/passive role between the
nodes: the inactive one still generates a lot of traffic. Is this an
expected behaviour?
The 'peers' configuration is very standard:
peers li01
peer pgli01 10.64.38.1:1024
peer pmli01 10.64.38.2:1024
Then there are 24 'stick-tables' similar to this:
listen XXXX
mode tcp
option tcplog
option ssl-hello-chk
stick-table type ip size 1k expire 30m store
conn_cur,conn_rate(10s) peers li01
tcp-request connection reject if { src_conn_cur ge 100 }
tcp-request connection reject if { src_conn_rate ge 50 }
tcp-request connection track-sc0 src
stick on src
default-server inter 5s fastinter 2s downinter 30s
server XXX1-443 10.64.38.227:443 check
server XXX2-443 10.64.38.228:443 check
Thank you
.marcoc
