Re: Haproxy stops accepting most SSL connections after a certain amount of load

On Wed, 2012-12-12 at 22:49 +0100, Willy Tarreau wrote: Hi Martijn, When you say connecting to the port, you mean in SSL or in TCP ? It's important because it's not the same. It's possible that you have reached a max number of concurrent connections for example because some handshakes are

Re: Haproxy stops accepting most SSL connections after a certain amount of load

Hi Martijn, On Thu, Dec 13, 2012 at 10:23:50AM +0100, Martijn Otto wrote: On Wed, 2012-12-12 at 22:49 +0100, Willy Tarreau wrote: Hi Martijn, When you say connecting to the port, you mean in SSL or in TCP ? It's important because it's not the same. It's possible that you have reached

Re: Haproxy stops accepting most SSL connections after a certain amount of load

BTW, I have another idea. When the issue happens, it would be nice if you could try to connect to the stats socket using socat and issue show info, show stat and show sess all and send the result to a file. Warning, this will reveal internal addresses, so you probably don't want to send it to the

Re: Bug in 1.5-dev15, dev-14 and maybe lower?

Hi Willy, On 12.12.2012 22:53, Willy Tarreau wrote: Hi Sander, Could you try to disable the splice options just to see ? And if that does not change anything, please also try to disable option abortonclose. That will help us narrow the issue down. Anyway, I don't see anything wrong with

Re-encrypt to the backend

I am making pretty good progress with my initial haproxy config. However, I do have a question/problem. I have haproxy terminating ssl, however, I have a need on the backend that certain requests to send them to the backend encrypted. So basically for certain requests I need to re-encrypt

Aggressive Timeouts and Catching 504s

Hey Guys, Had a question about the feasibility of setting aggressive server timeouts then catching and redirecting 504 responses from one backend to another like the following. frontend main bind x.x.x.x:80 acl catch_timeout status ge 504 use_backend secondary if catch_timeout backend

Re: Aggressive Timeouts and Catching 504s

Hi Tait, On Fri, Dec 14, 2012 at 01:28:16AM -0500, Tait Clarridge wrote: Hey Guys, Had a question about the feasibility of setting aggressive server timeouts then catching and redirecting 504 responses from one backend to another like the following. frontend main bind x.x.x.x:80

Re: Re-encrypt to the backend

Hi Alex, On Fri, Dec 14, 2012 at 12:58:17AM +, DeMarco, Alex wrote: I am making pretty good progress with my initial haproxy config. However, I do have a question/problem. I have haproxy terminating ssl, however, I have a need on the backend that certain requests to send them to the