Craig, I do realize that. I have read it through, and I thought quite well.
However, I'm still not sure what URL or address to give to my users. I'm
assuming I just give them the http://haproxyserver_name.domain.com address,
and that haproxy server (or stunnel) will forward all URL's to the
appropr
Anne -
You really need to read the documentation at
http://haproxy.1wt.eu/download/1.3/doc/architecture.txt. Check section 3.1
for a stunnel example.
C
On Sat, Mar 13, 2010 at 5:22 PM, Anne Moore wrote:
> This is wonderful. Thank you.
>
> Would I have to setup stunnel on a different server,
Hi Nick, it's a bit late now and I'm not sure I will be able to test this
tomorrow... I have quite a lot to do. Will try asap, if not sooner, by Monday.
But I'll try to do it tomorrow.
> Thanks for your help debugging this.
Thanks for your help in solving this. :D
Thanks,
Anze
On Saturday
This is wonderful. Thank you.
Would I have to setup stunnel on a different server, and then forward those
SSL requests to the haproxy server, and then from there, forward those
request to the web servers? Or, can stunnel be installed and used on the
same server as the haproxy? If I used stunnel
You *can* set up haproxy to act as tcp proxy which passes requests to
backend https servers but then u cant use any of the "advanced"
functions of load balancer (u cant for example forward requests to
different backend based on path, or use cookie-based persistence).
Can't u just turn off SSL (or c
On Saturday 13 March 2010, Craig Carl wrote:
> Anne -
>Your would need an application to handle SSL and forward HTTP. I use
> stunnel for that with no problem. This is the guide I used, the basics are
> the same on any distro -
Also, there is a patch for stunnel on haproxy homepage. You can fi
Anne -
Your would need an application to handle SSL and forward HTTP. I use
stunnel for that with no problem. This is the guide I used, the basics are
the same on any distro -
http://www.buro9.com/blog/2009/12/07/installing-haproxy-load-balance-http-and-https/
Craig
On Sat, Mar 13, 2010 at 2
Very interesting. Thank you for the reply. That's very disappoint that
haproxy doesn't support SSL.
However, what if I my haproxy was HTTP, and it forwarded requests to my two
backend HTTPS (SSL) URL servers?
Would this scenario work fine with haproxy?
Thank you
Anne
_
From: XAN
Hello Anze.
On 13 March 2010 20:08, Anze wrote:
>> Interesting. Have you run haproxy -d from the command line to check
>> the debugging output? "option log-health-checks" is also useful.
> I was running it from the command line (too) because logging was not working
> (rsyslogd's UDP support was d
Hi
Dnia 2010-03-13, sob o godzinie 13:34 -0500, Anne Moore pisze:
> Greetings to all,
>
> I'm new to this group, but have really been working hard on getting
> haproxy working for Oracle Application HTTP server over SSL.
>
> I've looked through the website, but can't seem to find anything that
> > If I disable this (as it was before) everything works as it should. It
> > even figures out (correctly) that one server returns "all_is_ok" and
> > another just empty string - and takes the other one down.
>
> Interesting. Have you run haproxy -d from the command line to check
> the debugging
Hello Anze.
On 13 March 2010 18:42, Anze wrote:
>> I will try to trace where the check fails and why. I guess it is easiest
>> for me to do it because i can replicate the error anytime. ...
>
> Ok, looks like the culprit is this piece of code:
> -
> /* Close the transmit channel, leaving
> I will try to trace where the check fails and why. I guess it is easiest
> for me to do it because i can replicate the error anytime. ...
Ok, looks like the culprit is this piece of code:
-
/* Close the transmit channel, leaving the connection half-open... */
int shut = shutdown(fd,
Greetings to all,
I'm new to this group, but have really been working hard on getting haproxy
working for Oracle Application HTTP server over SSL.
I've looked through the website, but can't seem to find anything that shows
how to setup SSL on the haproxy. I also can't find anything on how to s
On Saturday 13 March 2010, Willy Tarreau wrote:
> On Sat, Mar 13, 2010 at 02:50:32PM +, Nick Chalk wrote:
> > > With 1.4.1 WITH patch applied:
> > > - all 3 lines disabled: system works (serves content, no problem, but
> > > no check)
> > > - only 1. line enabled: ERROR, haproxy tells all hosts
Hi,
I was wondering if there was a link to a 'manager-friendly' list of
differences/changes/fixes between 1.3.X stable and 1.4.X stable? Particuarly if
there are any new deprecated configs (or outright config breakages, as I've had
at various times with OpenLDAP or Samba)..
Also
Hi Nick,
On Sat, Mar 13, 2010 at 02:50:32PM +, Nick Chalk wrote:
> > With 1.4.1 WITH patch applied:
> > - all 3 lines disabled: system works (serves content, no problem, but no
> > check)
> > - only 1. line enabled: ERROR, haproxy tells all hosts are down (when they
> > are
> > not)
> > - onl
Hello Anze.
On 13 March 2010 10:28, Anze wrote:
> Here is my config:
...
> listen webfarm 123.123.123.123:80
> mode http
> stats enable
> balance roundrobin
> stats auth user:pass
> cookie SERVERID insert indirect
> option httpclose
> option forwa
Hi Willy,
Please find a small patch to prevent haproxy segfaulting when logging captured
headers in CLF format.
Example config to reproduce the bug :
listen test :10080
log 127.0.0.1 local7 debug err
modehttp
option httplog clf
capture request header NonExist
On Sat, Mar 13, 2010 at 11:28:19AM +0100, Anze wrote:
> > no, your config is not clear to me now. Could you please post it ?
>
> Sorry, it was late. :)
>
> Here is my config: (I replaced all sensitive info, I hope I haven't made a
> mistake)
OK it's a lot more clear now :-)
> listen webfarm 1
Vous êtes à un tour d'une expérience qui bouleversera votre vie - Jouez ici
Http://www.vipplayzbonus.net/fr/
On Saturday 13 March 2010, Willy Tarreau wrote:
> On Fri, Mar 12, 2010 at 11:55:59PM +0100, Anze wrote:
> > On Friday 12 March 2010, Willy Tarreau wrote:
> > > > > It is possible with the patch that Nick Chalk recently posted in
> > > > > the thread "Truncated health check response from real server
On Fri, Mar 12, 2010 at 11:55:59PM +0100, Anze wrote:
>
> On Friday 12 March 2010, Willy Tarreau wrote:
> > > > It is possible with the patch that Nick Chalk recently posted in the
> > > > thread "Truncated health check response from real servers". It is a
> > > > rework of an ...
> > > > You seem
23 matches
Mail list logo