Re: ratio spam/useful message

2021-07-07 Thread Willy Tarreau
Hi Julien, On Tue, Jul 06, 2021 at 11:06:05AM +0200, Julien Pivotto wrote: > Hello, > > Lately, the ratio spam/useful message on the ML has been quite high. Well, that's not what I'm seeing in the archives here: https://www.mail-archive.com/haproxy@formilux.org/ I had to manually delete 9

[ANNOUNCE] haproxy-2.3.11

2021-07-07 Thread Christopher Faulet
Hi, HAProxy 2.3.11 was released on 2021/07/07. It added 106 new commits after version 2.3.10. This release is quite huge, mainly because the previous release is a bit old. Several major bugs were fixed: * Amaury fixed a possible deadlock if "set maxconn server" command was used when

[ANNOUNCE] haproxy-2.4.2

2021-07-07 Thread Christopher Faulet
Hi, HAProxy 2.4.2 was released on 2021/07/07. It added 35 new commits after version 2.4.1. The main purpose of this release is to fix a possible deadlock introduced into the previous release when the maxconn of a server was changed via an agent-check. In this case, the server lock was held

Re: Proposal about new default SSL log format

2021-07-07 Thread Tim Düsterhus
Remi, On 7/7/21 4:43 PM, Remi Tricot-Le Breton wrote: A quick recap of the topics raised by the multiple conversations had in this thread : - we won't used tabs as separators in order to remain consistent with the existing log format (especially since this new format will only be an extension

Re: Proposal about new default SSL log format

2021-07-07 Thread Remi Tricot-Le Breton
Hello, On 06/07/2021 14:55, Willy Tarreau wrote: On Tue, Jul 06, 2021 at 12:19:56PM +0200, Tim Düsterhus wrote: Willy, On 7/6/21 12:12 PM, Willy Tarreau wrote: A few points first, that are needed to address various concerns. The goal here is to defined an HTTPS log format because that's what

Re: Help

2021-07-07 Thread Emerson Gomes
Hello Anilton, In the "bind *:443" line, do not specify a PEM file directly, but only the directory where your PEM file(s) resides. Also, make sure that both the certificate and private key are contained within the same PEM file. It should look like this: -BEGIN CERTIFICATE- xxx

Re: Help

2021-07-07 Thread Shawn Heisey
On 7/7/2021 6:45 AM, Anilton Silva Fernandes wrote: Hi there. Can I get some help from you. I’m configuring HAProxy as a frontend on HTTPS with centified and I want clients to be redirect to BACKEND on HTTPS as well (443) but I want clients to see only HAProxy certificate, as the backend

Help

2021-07-07 Thread Anilton Silva Fernandes
Hi there. Can I get some help from you. I'm configuring HAProxy as a frontend on HTTPS with centified and I want clients to be redirect to BACKEND on HTTPS as well (443) but I want clients to see only HAProxy certificate, as the backend one is not valid. Bellow the schematic of my design: