Hey All,
When adding hosts to a F/W behind a VIP (keepalived for example) to
which Haproxy is bound, should just the VIP be added to the F/W or would
all member hosts behind Haproxy need to be added as well?
If all member hosts behind haproxy need to be added, why?
Only reason I can think of
Hello,
I'm trying to configure Haproxy w/ Keepalived to pass TLS encrypted
traffic from the VIP to the underlying hosts which are also themselves
running with TLS Certificates.
Highlevel overview of the setup:
server1:7182 ( TLS Encrypted ) 10.0.0.1
server2:7182 ( TLS Encrypted )
Hey Guy's,
I need to pass TLS traffic from the VIP (managed by keepalived) to the
servers defined in HAproxy. I've got certs on both the VIP and the
servers. What is the best way to do pass traffic through?
I'm given the impression that TLS bridging
(https://www.haproxy.com/documentation/
x was to adjust the SELinux rules using audit2allow:
https://tinyurl.com/y8kzon6w
Cheers,
TK
On 5/22/2018 1:14 AM, Rainer Duffner wrote:
Am 22.05.2018 um 06:46 schrieb TomK <mailto:tomk...@mdevsys.com>>:
Trying to mount an NFS share vi an Haproxy / Keepalived configuration.
When I
Hey All,
Trying to mount an NFS share vi an Haproxy / Keepalived configuration.
When I mount the NFS share directly from the host, bypassing Haproxy /
Keepalived, it works fine. However, when I try via the Haproxy /
Keepalived combination, it freezes.
What's also interesting everything work
Hey All,
Wondering if anyone seen this message from a tcpdump of a simple mount
session:
psql01: mount nfs-c01:/n /m
Yields this message
ERR 20: Auth Rejected Credentials (client should begin new session)
and the mount attempt never exits and never mounts /m . nfs-c01 is a
VIP that's serv
Hey Guy's,
Getting below message which in turn fails to list proper UID / GID on
NFSv4 mounts from within an unprivileged account. All files show up with
owner and group as nobody / nobody.
Wondering if anyone saw this and what the solution could be?
[root@client01 etc]# cat /etc/idmapd.conf
. Couldn't get this working without
all the work you guy's do!
Cheers,
Tom
On 02/25/2018 08:29 PM, TomK wrote:
Hey Guy's,
A success story instead of a question.
With your help, managed to get the HA component working with HAPROXY and
keepalived to build a fairly resilient NFS v4 VM c
help your work, please PM me for the
written up post or I could just post here if the lists allow it.
Cheers,
Tom
On 2/19/2018 12:25 PM, TomK wrote:
On 2/19/2018 12:09 PM, Kaleb S. KEITHLEY wrote:
Sounds good and no problem at all. Will look out for this update in the
future. In the mea
Hey Guy's,
Wondering if there is a way to setup an HA NFSv4 server using HAPROXY
and keepalived or if anyone tried that doesn't result in the client
disconnecting with this error even when using the VIP through a basic
HAPROXY + keepalived config:
[root@ipaclient01 ~]# cd /n
-bash: cd: /n: S
On 1/27/2018 2:21 AM, Igor Cicimov wrote:
Thank you! That was it.
On 27 Jan 2018 4:44 pm, "TomK" <mailto:tomk...@mdevsys.com>> wrote:
On 1/26/2018 7:49 PM, Igor Cicimov wrote:
On Fri, Jan 26, 2018 at 2:28 PM, TomK mailto:tomk...@mdevsys.com> <m
On 1/26/2018 7:49 PM, Igor Cicimov wrote:
On Fri, Jan 26, 2018 at 2:28 PM, TomK <mailto:tomk...@mdevsys.com>> wrote:
Hey All,
We have UCARP and HAproxy configured and setup between two servers.
HAproxy is bound to the UCARP VIP between the nodes. There are four
ser
Hey All,
We have UCARP and HAproxy configured and setup between two servers.
HAproxy is bound to the UCARP VIP between the nodes. There are four
services per hoer: four on SRV1 (primary) and same four apps on SRV2
(secondary) We need active / passive behavior, since apps don't support
an act
13 matches
Mail list logo
