There is no SSL protected repo. I'm surprized that you found the
haproxy.org
site slow, usually it's reasonably fast. Are you sure you weren't
cloning from 1wt.eu instead, which is the slow master ?
Would it be possible to get the haproxy org on github to be synced with
your repos.
Hey,
I have ran into a odd scenario, where the backend is DOWN however the
layer 7 checks are passing. I have included the check which we
received. The haproxy setup is fairly simple using proxy protocol. I
could only find one example of this issue here, however, no follow up
was done on
Hey,
I have ran into a odd scenario, where the backend is DOWN however the
layer 7 checks are passing. I have included the check which we
received. The haproxy setup is fairly simple using proxy protocol. I
could only find one example of this issue here, however, no follow up
was done on the
Currently running 1.5-dev19, very tricky to get a packet capture as it
only happened in production. When I try to do synthetic testing
replicate it in a staging environment I cannot get it to happen. When
a backend does go down the layer 7 check shows a valid status code for
a down host. The other
Hello,
Is it possible to front AWS S3 Static Web Hosting with HAProxy? I have
tried to setup a backend to proxy requests to
SomeHost.s3-website-us-east-1.amazonaws.com:80. But I am getting an error
from S3 indicating that the bucket SomeHost does not exist. Has anybody
tried to do that?
Best,
Hi Simon,
On Mon, Feb 02, 2015 at 11:16:09AM +0900, Simon Horman wrote:
* No options to configure the format of the email alerts
You know, even if we make this format very flexible, some users
will complain that they cannot send it in html and attach graphs :-)
Haha, yes indeed.
On 02.02.2015 12:09, Mathieu Sergent wrote:
Hi,
I try to set up a load balancing with HAProxy and 3 web servers.
I want to receive on my web servers the address' client.
I read that it is possible with the option source ip usesrc but
you need to be root.
If you want to not be root, you have
Thanks for your help.
The configuration is now back to 5000 maxconn, and Haproxy has been running
with this config over the last weekend. The memory footprint is now 1G.
# ps -u nobody u
USER PID %CPU %MEMVSZ RSS TTY STAT START TIME COMMAND
nobody9103 0.7 3.9 1334192
Hi,
On Mon, Feb 02, Sander Klein wrote:
On 02.02.2015 12:09, Mathieu Sergent wrote:
Hi,
I try to set up a load balancing with HAProxy and 3 web servers.
I want to receive on my web servers the address' client.
I read that it is possible with the option source ip usesrc but
you need to
Hi,
I try to set up a load balancing with HAProxy and 3 web servers.
I want to receive on my web servers the address' client.
I read that it is possible with the option source ip usesrc but you
need to be root.
If you want to not be root, you have to used HAProxy with Tproxy. But
Tproxy
Signed-off-by: Simon Horman ho...@verge.net.au
---
doc/configuration.txt | 104 ++
1 file changed, 104 insertions(+)
diff --git a/doc/configuration.txt b/doc/configuration.txt
index c829590..aa3f30f 100644
--- a/doc/configuration.txt
+++
Hi Sander,
Yes i reloaded the haproxy and my web server too. But no change.
And i'm not using proxy protocol.
To give you more precisions, on my web server i used tcpdump functions
which give me back the header of the requete http. And in this i found my
client's address.
But this is really
Hi Georges-Etienne,
On Mon, Feb 02, 2015 at 08:35:21AM -0500, Georges-Etienne Legendre wrote:
Thanks for your help.
The configuration is now back to 5000 maxconn, and Haproxy has been running
with this config over the last weekend. The memory footprint is now 1G.
OK, so there's no doubt
Hi Mathieu,
Pleas keep the list in the CC.
On 02.02.2015 15:26, Mathieu Sergent wrote:
Thanks for your reply.
I just used the option forwardfor in the haproxy configuration. And i
can find client's address from my web server (with tcpdump).
But if i don't use the option forwardfor, the web
Georges-Etienne,
your captures were extremely informative. While I cannot reproduce the
behaviour here even by reinjecting the same health check requests, I'm
seeing two really odd things in your trace below :
We accept an SSL connection from the firewall :
08:15:52.297357 accept(6,
On 02.02.2015 16:33, Mathieu Sergent wrote:
Hi Sander,
Yes i reloaded the haproxy and my web server too. But no change.
And i'm not using proxy protocol.
To give you more precisions, on my web server i used tcpdump functions
which give me back the header of the requete http. And in this i
On Tue, Feb 03, 2015 at 01:00:44PM +0900, Simon Horman wrote:
Signed-off-by: Simon Horman ho...@verge.net.au
---
doc/configuration.txt | 104
++
(...)
Great! I changed the commit tag to DOC and applied it as-is.
Thank you Simon!
Willy
OpenSSL sometimes acts stupidly like this inside a chroot. We've
encountered a few issues in the past with openssl doing totally crazy
stuff inside a chroot, including abort() on krb5-related things. From
what I understood (others, please correct me if I'm wrong), such
processing may be
Hi Christian,
On Mon, Feb 02, 2015 at 04:55:56PM +0100, Christian Ruppert wrote:
Hey,
are there some kind of global ACLs perhaps? I think that could be really
useful. In my case I have ~70 frontends and ~100 backends. I often use
the same ACLs on multiple frontends/backends for specific
Hey,
are there some kind of global ACLs perhaps? I think that could be really
useful. In my case I have ~70 frontends and ~100 backends. I often use
the same ACLs on multiple frontends/backends for specific whitelisting
etc.
It would be extremely helpful to specify some of those ACLs in the
All fair points. Too bad you don't have the haproxy org on github. It would
be nice if that were a trustworthy source.
With regard to the slowness, I am using the following remote config:
$ git remote -v
origin http://git.haproxy.org/git/haproxy-1.5.git/ (fetch)
origin
That sounds pretty cool. I would love to only have to define my ACLs in one
place.
wt
On Mon, Feb 2, 2015 at 8:31 AM, Willy Tarreau w...@1wt.eu wrote:
Hi Christian,
On Mon, Feb 02, 2015 at 04:55:56PM +0100, Christian Ruppert wrote:
Hey,
are there some kind of global ACLs perhaps? I
On Mon, Feb 02, 2015 at 09:34:37AM -0800, Warren Turkal wrote:
On Sat, Jan 31, 2015 at 4:57 AM, Willy Tarreau w...@1wt.eu wrote:
There is no SSL protected repo. I'm surprized that you found the
haproxy.org
site slow, usually it's reasonably fast. Are you sure you weren't cloning
from
On Sat, Jan 31, 2015 at 4:57 AM, Willy Tarreau w...@1wt.eu wrote:
There is no SSL protected repo. I'm surprized that you found the
haproxy.org
site slow, usually it's reasonably fast. Are you sure you weren't cloning
from 1wt.eu instead, which is the slow master ?
Would it be possible to
24 matches
Mail list logo
