Re: Need Help on HAProxy Load Balancing
Hi, On Sat, Oct 16, 2010 at 10:01:22AM +0530, Sivaprakash wrote: Thanks a lot !! Could you please suggest good design for Read - Only data base load balancing sing HAProxy. The only reasonable use of a load balancer in front of a database is for fail-over purposes, so that you only use one node at a time. There is a very good article on the subject here : http://www.alexwilliams.ca/blog/2009/08/10/using-haproxy-for-mysql-failover-and-redundancy/ Concerning haproxy on Windows, some people managed to get it to work, but the performance was terribly low, with a limit on a very small number of concurrent connections (about 500). It was OK for running as a debugging tool, but not for anything close to production. Regards, Willy
Re: Configuration file is valid (even though it isn't?)
On Thu, Oct 14, 2010 at 04:21:46PM +0200, Dariusz Suchojad wrote: Hi, I was a bit surprised that a config file below did pass the validation done with haproxy -c -f config_file using HA-Proxy version 1.3.22 2009/10/14 and the current latest HA-Proxy version 1.5-dev2 2010/08/28. I wouldn't have spotted it if I weren't writing a simple parser for the HAProxy config file's grammar and one of my tests stubbornly didn't want to fail even though I was feeding it with what I thought was an invalid config :-) What do you think of it? In fact, it's valid for haproxy. The validation check consists in parsing the file and building the entire internal configuration tree, then exit just before the point where it would have started the listeners. The time parser only checks for a few known substrings after the digits, which is the reason why it works here when you write 2saaa. It only retains 2s. We thought about improving the parser in the past, in order to support multiple units. For instance : 2d4h30m15s. When the parser supports that, it will fail on the aaa above. But it's true that right now it does not. I'll check if something trivial can be done about this. I'd also rather fail early than let people keep non-upgradable configs. Thanks! Willy
Re: Haproxy support for HTTPS (SSL) backend servers
ACL features work just fine in TCP mode as well as HTTP mode. -nick On 10/16/2010 3:34 AM, Pasi Kärkkäinen wrote: Hello, I'd like to use haproxy to loadbalance a service that uses (only) https in the backend.. service in question cannot be changed to provide http, it's https only. (I know, it's stupid, but I cannot change that unfortunately..) I know I could use the haproxy 'raw' mode, but I need some of the ACL features of haproxy, so I need to use the http mode instead. Does someone have a patch that allows using https on the backend? If there's no such patch, how big changes it would require? I might work on it if there's nothing ready yet.. Thanks! -- Pasi
unsubscribe
Unsubscribe Please help Logica to respect the environment by not printing this email / Pour contribuer comme Logica au respect de l'environnement, merci de ne pas imprimer ce mail / Bitte drucken Sie diese Nachricht nicht aus und helfen Sie so Logica dabei, die Umwelt zu schützen. / Por favor ajude a Logica a respeitar o ambiente nao imprimindo este correio electronico. This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.
ipv6 implementation forwardfor except
Is it possible to implement at forwardfor except ipv6 ? Now it is only possible to except a ipv4 address. If that is possible we can also make the legacy stuff with ssl ipv6 reachable. Thanks in advance. Met een vriendelijke groet, Mike Hoffs