On 7/5/23 15:27, Pavlos Parissis wrote:
There is a list of pre-defined ACLs, see
http://docs.haproxy.org/2.8/configuration.html#7.4, and in that list
you have HTTP_1.0 acl to match traffic for that version of HTTP protocol.
So, you can add below snippet to block traffic for HTTP 1.0 version
http-request deny if HTTP_1.0.
I have a little more information.
It looks like Solr has a problem when it gets h2c requests from haproxy.
Interestingly, the problem does not happen if the frontend request is
HTTP/2. It does happen if the frontend request is 1.0, 1.1, or 3. I
have not yet configured Solr to use TLS, so I don't know if it's unique
to h2c or also affects h2.
If I remove "proto h2 check-proto h2" from the server line so Solr only
gets 1.1 requests, then the problem is entirely gone. Very strange. I
think haproxy is working correctly and Solr has the problem.
Thanks,
Shawn
