Hi Willy >> Hi Baptiste, as you can see using prefix or sticky table we found this >> invalid cookie problem. >> >> - Why without haproxy in the middle we do not have this problem ? why a >> browser send an INVALID cookie ?
>Because it learned it another way, maybe before you installed haproxy, >maybe on a direct connection or anything. I'm sure enough this is not the case. After we get this behavior, we cleaned all cookies. After some testing passing only by haproxy for these domain, we get the problem again, with Chrome and with IE. >> - How we can match absence of prefix ? can be done directly by haproxy ? > I think haproxy should fix it, yes, otherwise it can continue this way > forever. That said, it *will* break existing sessions, but if haproxy > applies load balancing, such session will be broken as well. > What version is this, 1.6-dev or 1.5 ? What do you mean with: "it *will* break existing sessions" ? if we load balance web application with haproxy, session coming in must have a cookie inserted/prefixed by haproxy, I'm wrong ? if so any request with an Invalid cookie is INVALID :D so no session will be broken... We compiled from source "HA-Proxy version 1.6-dev2-25f4e3e 2015/07/10" Roberto -----Original Message----- From: Willy Tarreau [mailto:[email protected]] Sent: lunedì 20 luglio 2015 10.19 To: mlist Cc: 'Baptiste'; [email protected] Subject: Re: cookie prefix strange behavior [please avoid top-posting, it makes it really painful to reply to e-mails with the relevant context] On Sat, Jul 18, 2015 at 09:56:23AM +0000, mlist wrote: > Hi Baptiste, as you can see using prefix or sticky table we found this > invalid cookie problem. > > - Why without haproxy in the middle we do not have this problem ? why a > browser send an INVALID cookie ? Because it learned it another way, maybe before you installed haproxy, maybe on a direct connection or anything. > - How we can match absence of prefix ? can be done directly by haproxy ? I think haproxy should fix it, yes, otherwise it can continue this way forever. That said, it *will* break existing sessions, but if haproxy applies load balancing, such session will be broken as well. What version is this, 1.6-dev or 1.5 ? Willy -- Il messaggio e' stato analizzato alla ricerca di virus o contenuti pericolosi da MailScanner, ed e' risultato non infetto.
