Hello,
I've been facing an issue related a malformed request sended from an
external client, the line that the HAproxy register was like this:
Dec 4 07:15:30 balancer haproxy[22482]: 1.1.1.1:35546
[04/Dec/2019:07:15:29.221] proxy-1~ proxy-1/<NOSRV> -1/-1/-1/-1/1096
400 5210 - - CR-- 41/12/0/0/0 0/0 {|} "<BADREQ>"
I tought that was due a block rule, so I disabled all, but the response
was the same.
I swiched the protocol from https to http and caught the stream by
tcpdump, that was the key:
GET / HTTP/1.1
Header1 Authorization
Host: mydomain.com
The headers was configured incorrectly.
In this case, I had the possibility to do the swich and get the raw
request from the wire, but what happens if I can't swich from https?
Does HAproxy some raw output after the TLS negotiation, logging is
good, but in some cases, like this, it's hard to know root cause.
Thanks,
