Hi,
On Wed, Oct 15, pasquale scalea wrote:
i have configure haproxy-1.5.4-1.el6.x86_64 with this config
...
backend view_https
mode tcp
option tcplog
option httpchk OPTIONS /
http-check expect status 200
option ssl-hello-chk #make sure we can talk SSL, not just TCP
Hi,
On Wed, Oct 15, Dennis Plöger | getit GmbH wrote:
Hi!
Hmm... I just understood, that we're probably talking about different things
here. As you can see in my configuration, I haven't specify a maxconn value.
From the configuration documentation I didn't understand, what the default
Hi Dennis,
Now from what I read on the net about haproxy I expected that the
load-balancing isn't that cpu intensive and that most of the cpu usage
should be generated by the ssl offloading but what I'm seeing is that
the two cores 0 and 4 are at 20% idle while the rest is at 80-90% idle
I just wanted to report an issue that had me hitting my head on the table for a
few hours:
I reconfigured a development environment to use Chef to generate haproxy config
files. Every 2-3 minutes or so, depending on load, haproxy would crash with a
`trap divide error` (divide by zero).
It
Hi haproxy team:
I see the document about these:
beconn is the total number of concurrent connections handled by the
backend when the session was logged.
srv_conn is the total number of concurrent connections still active on
the server when the session was logged.
fell confused about
Hi!
Maybe try with no option dontlognull ?
Are all connections in logs logged with normal -- session state ?
http://cbonte.github.io/haproxy-dconv/configuration-1.5.html#8.5
Oh. Thanks for mentioning that page (I somehow never got there). I now saw,
that the connections are dropped with cD
Hello!
Oh. Thanks for mentioning that page (I somehow never got there). I now saw,
that
the connections are dropped with cD - meaning, that HAproxy thought, the
server would be down.
Getting back on that. I understand, that D means that HAProxy thinks, the
server is down. Shouldn't hatop
Hello Lukas,
Thanks for your reply. You can find my additional information in your text
below.
Am 17.10.2014 um 01:32 schrieb Lukas Tribus luky...@hotmail.com:
Gonna need to see your configuration to be able to help you, especially ssl
and http related parts.
Hi Heiko,
#-
# test configuration
#-
frontend test1
bind *:443 ssl crt /etc/pki/tls/certs/domain.com-haproxy.pem
#ciphers HIGH:RC4-SHA:!ADH
#ciphers
Used the bind parameter before which did / does not help and
created a tcpdump with the mentioned settings (DH = 1024 Bit
and force tls) with your requested parameters.
Something doesn't add up.
The handshake you sent me is still negotiating TLSv1.2 and
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
Hello Lukas,
Am 17.10.2014 um 18:11 schrieb Lukas Tribus luky...@hotmail.com:
Used the bind parameter before which did / does not help and
created a tcpdump with the mentioned settings (DH = 1024 Bit
and force tls) with your requested parameters.
Something doesn't add up.
The
Hi Heiko,
Currently, I start haproxy manually with this command (in the same shell I
edit the config file, thus I have to stop haproxy with CTRL-C for changes):
—
haproxy -d -f /etc/haproxy/haproxy.cfg
—
I see. Can you run it through strace -tt, Not that I expect to see why the TLS
Hello Lukas,
Thanks for your update.
Currently, I start haproxy manually with this command (in the same shell I
edit the config file, thus I have to stop haproxy with CTRL-C for changes):
—
haproxy -d -f /etc/haproxy/haproxy.cfg
—
I see. Can you run it through strace -tt, Not that I
13 matches
Mail list logo
