Use this area to offer a short preview of your email's content.
View this email in your browser ( *%7CARCHIVE%7C* )
***
( http://autododo.ro/ )
***
Anunturile Zilei !
(
Add an external check which makes use of an external process to
check the status of a server.
v7 updates this patchset as per the feedback received for v6
(a very long time ago).
Simon Horman (3):
MEDIUM: Add port_to_str helper
MEDIUM: Break out check establishment into connect_chk()
This helper is similar to addr_to_str but
tries to convert the port rather than the address
of a struct sockaddr_storage.
This is in preparation for supporting
an external agent check.
Signed-off-by: Simon Horman ho...@verge.net.au
--
v7
* First post
---
include/common/standard.h | 8
This is in preparation for adding a new type of check that
uses a process rather than a socket.
Signed-off-by: Simon Horman ho...@verge.net.au
---
v7
* Use connect_chk() as the name of the new function
* Manual rebase
- Add SN_ERR_UP return value to connect_chk()
to handle the case where
Add an external check which makes use of an external process to
check the status of a server.
---
Status: pending
v7
* Manual Rebase
* Make option external-check configuration parameter boolean
* Add external-check command configuration parameter
* Add external-check path configuration
Hi we use here a generator for haproxy configs and this one generates amongst
all https frontend using SNI to redirect to endspoints.
Basically, we host lot of VMS and the host is NATing/redirecting every served
domain to the underlying VM and when we use https.
In other words, it terminates SSL
just forgot to include the version: HA-Proxy version 1.5-dev25-a339395
2014/05/10
On 13/06/2014 10:04, kiorky wrote:
Hi we use here a generator for haproxy configs and this one generates amongst
all https frontend using SNI to redirect to endspoints.
Basically, we host lot of VMS and the host
Hi,
You should use the crt-list option in your bind line, and use a file listing
your certificates (one per line)
Example :
bind *:443 ssl crt-list /etc/haproxy/certificates
Regards,
Nicolas.
Hi we use here a generator for haproxy configs and this one generates amongst
all https frontend
Ok,
So now i have a working solution:
crt /clouds/default crt /clouds
HOWEVER i dont suceed in using crt-list which i would prefer as it is more
explicit:
So i think i'm not using the right syntax to give something on a newline.
bind *:443 ssl crt
Oh, i think i understood too late your mail :)
Trying so to put my certificates paths in a file listing them...
On 13/06/2014 10:32, kiorky wrote:
Ok,
So now i have a working solution:
crt /clouds/default crt /clouds
HOWEVER i dont suceed in using crt-list which i would prefer as it is
So i confirm that also the crt-list is working as well
Many thanks as it solves all of my problems !
On 13/06/2014 10:32, kiorky wrote:
Ok,
So now i have a working solution:
crt /clouds/default crt /clouds
HOWEVER i dont suceed in using crt-list which i would prefer as it is more
On Fri, Jun 13, 2014 at 10:32:34AM +0200, kiorky wrote:
Ok,
So now i have a working solution:
crt /clouds/default crt /clouds
HOWEVER i dont suceed in using crt-list which i would prefer as it is more
explicit:
So i think i'm not using the right syntax to give something on a newline.
Hi Simon!
On Fri, Jun 13, 2014 at 04:18:14PM +0900, Simon Horman wrote:
Add an external check which makes use of an external process to
check the status of a server.
v7 updates this patchset as per the feedback received for v6
(a very long time ago).
(...)
Thanks for this. I'm just
On Fri, Jun 13, 2014 at 10:41:54AM +0200, Willy Tarreau wrote:
Hi Simon!
On Fri, Jun 13, 2014 at 04:18:14PM +0900, Simon Horman wrote:
Add an external check which makes use of an external process to
check the status of a server.
v7 updates this patchset as per the feedback received
Yep, as i said in a replied mail, it's definitely working well !
i had just misread the doc at first and was putting it on the main conf, morning
is always hard for me.
On 13/06/2014 10:39, Willy Tarreau wrote:
On Fri, Jun 13, 2014 at 10:32:34AM +0200, kiorky wrote:
Ok,
So now i have a
Willy,
Much as I'd love to have it right now
Its is probably more sensible to go for 1.6, considering the huge effort
you have put into getting the 1.5 release out and bug free.
I wouldn't want to be the one holding you up.
So I'm happy with whatever your decision is.
On 13 June 2014
On Fri, Jun 13, 2014 at 10:48:27AM +0100, Malcolm Turnbull wrote:
Willy,
Much as I'd love to have it right now
Its is probably more sensible to go for 1.6, considering the huge effort
you have put into getting the 1.5 release out and bug free.
I wouldn't want to be the one holding you
Hi,
In syslog I see all kinds of things, for example when a server has gone down
for maintenance or when I send a SIGHUP to the haproxy process. So why is a
failure not being logged?
It would really help to at least know when the chkfail has occurred so we can
try to relate the issue with
Hi Dmitry,
On Wed, May 28, 2014 at 11:13:24AM +0200, Willy Tarreau wrote:
On Wed, May 28, 2014 at 01:11:47PM +0400, Dmitry Sivachenko wrote:
On 28 ?? 2014 ??., at 13:06, Willy Tarreau w...@1wt.eu wrote:
OK but then you make an interesting point with your very low timeout
On Fri, Jun 13, 2014 at 04:18:16PM +0900, Simon Horman wrote:
This is in preparation for adding a new type of check that
uses a process rather than a socket.
OK I applied this one, thanks Simon!
Willy
On Fri, Jun 13, 2014 at 04:18:15PM +0900, Simon Horman wrote:
This helper is similar to addr_to_str but
tries to convert the port rather than the address
of a struct sockaddr_storage.
This is in preparation for supporting
an external agent check.
I may be wrong, but I'm seeing an
Hi Michel,
On 13/06/2014 17:05, Michel Hoogervorst wrote:
Hi,
In syslog I see all kinds of things, for example when a server has gone down
for maintenance or when I send a SIGHUP to the haproxy process. So why is a
failure not being logged?
It would really help to at least know when the
Hi Cyril,
Thank you. I haven't found that one before.
Will try. :-)
Michel
-Oorspronkelijk bericht-
Van: Cyril Bonté [mailto:cyril.bo...@free.fr]
Verzonden: vrijdag 13 juni 2014 18:56
Aan: Michel Hoogervorst
CC: 'haproxy@formilux.org'
Onderwerp: Re: [chkfail] what went wrong?
Hi
On Fri, Jun 13, 2014 at 1:08 AM, kiorky kio...@cryptelium.net wrote:
just forgot to include the version: HA-Proxy version 1.5-dev25-a339395
2014/05/10
On 13/06/2014 10:04, kiorky wrote:
Hi we use here a generator for haproxy configs and this one generates
amongst all https frontend using
Sorry for responding in the wrong thread, somehow I'm seeing two threads
for this (and another) message. Not sure if it's gmail or the list that's
duplicating threads today.
-Bryan
On Fri, Jun 13, 2014 at 10:48 AM, Bryan Talbot bryan.tal...@playnext.com
wrote:
On Fri, Jun 13, 2014 at 1:08
Hi Bryan,
On Fri, Jun 13, 2014 at 10:51:04AM -0700, Bryan Talbot wrote:
Sorry for responding in the wrong thread, somehow I'm seeing two threads
for this (and another) message. Not sure if it's gmail or the list that's
duplicating threads today.
It's neither, it's kiorky who responded to
Hi all,
just a quick update at the end of the week. I think we're about to have
everything that was pending merged. Emeric and Dirkjan at github are
finishing a basic support for OCSP Stapling which we'd prefer to merge
before the release in case we figure out that we need a smarter way to
Hi,
I'm not aware of a way to achieve what you want exactly.
The stick table expiry works best with something like HTTP where
connections are not that long so fresh connections keep refreshing the
timer.
In the case of SSH or RDP you have 1 potentially very long connection so
the only option
I agree with Aaron.
the expire period in the stick table should cover at least the
expected work period.
This is also how I setup them.
Baptiste
On Fri, Jun 13, 2014 at 10:40 PM, Aaron West aa...@loadbalancer.org wrote:
Hi,
I'm not aware of a way to achieve what you want exactly.
The stick
29 matches
Mail list logo