HAproxy logs

2011-07-13 Thread Mustafa zargar
Hello All, I am new to HAproxy and have installed the same in my company few days back and it is working fine so far except few traffic blocking issues. Actually the issue is that the traffic requests are (perhaps) getting blocked or cached on HAproxy server and cant see hits on webservers and

Load balancing Amazon RDs with HAProxy 1.4 gets the HAProxy macined blockes in a few seconds while using option mysql-check user

2011-07-13 Thread Siju George
Hi, I have an HAproxy 1.4 System on Amazon EC2 running the kernel Linux 2.6.38-8-virtual #42-Ubuntu SMP Mon Apr 11 04:06:34 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux with HA proxy version 1.4.8-1 I have created a user named 'haproxy' with the following privileges

Re: Load balancing Amazon RDs with HAProxy 1.4 gets the HAProxy macined blockes in a few seconds while using option mysql-check user

2011-07-13 Thread Cyril Bonté
Hi, Le mercredi 13 juillet 2011 14:36:57, Siju George a écrit : Hi, I have an HAproxy 1.4 System on Amazon EC2 running the kernel Linux 2.6.38-8-virtual #42-Ubuntu SMP Mon Apr 11 04:06:34 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux with HA proxy version 1.4.8-1 Your haproxy version is

Re: Haproxy response 502 but backend send 200

2011-07-13 Thread Alexey Vlasov
Hi Willy! On Wed, Jul 13, 2011 at 07:57:05AM +0200, Willy Tarreau wrote: I've got such a scheme on the shared hosting: +- apache_pool1 | apache_fe - haproxy -|- apache_pool2 | +- apache_pool3

https from source to destination

2011-07-13 Thread Christopher Ravnborg
Hi I'm looking for a solution which can do the following: Client need to connect to https webserver via haproxy. Encryption all the way. Log on webserver needs to contain client ip, this can be done, at least on http with forwardfor, that works fine. I have setup haproxy and read about stunnel

Re: https from source to destination

2011-07-13 Thread James Bardin
On Wed, Jul 13, 2011 at 5:04 PM, Christopher Ravnborg christopher.ravnb...@gmail.com wrote: Hi I'm looking for a solution which can do the following: Client need to connect to https webserver via haproxy. Encryption all the way. You can't read the https stream, because it's encrypted. Log

Re: https from source to destination

2011-07-13 Thread Guillaume Bourque
HI Christopher, As soon has the stream exit stunnel it is in plain http, then haproxy analyse the tthp protocol and it wil proxy the request to the http server not the https. if you don't use stunnel and use only haproxy you will loose all the flexibility of haproxy because https in not yet

Re: https from source to destination

2011-07-13 Thread Baptiste
On Wed, Jul 13, 2011 at 11:04 PM, Christopher Ravnborg christopher.ravnb...@gmail.com wrote: Hi I'm looking for a solution which can do the following: Client need to connect to https webserver via haproxy. Encryption all the way. Log on webserver needs to contain client ip, this can be done,

Re: https from source to destination

2011-07-13 Thread Craig
Hi, No. You terminate the ssl at the load-balancer, and send the http to the backend. You need to configure the backend servers to accept and trust the http traffic from the LB. I hereby request the feature to do https to backends Sometimes it's really troublesome not being able to do

Re: https from source to destination

2011-07-13 Thread James Bardin
On Wed, Jul 13, 2011 at 5:57 PM, Craig cr...@haquarter.de wrote: I hereby request the feature to do https to backends Sometimes it's really troublesome not being able to do that, even more so if a different party administrates the servers. I'm not sure if you're serious or not, but If

Re: https from source to destination

2011-07-13 Thread Craig
Hi, On Wed, Jul 13, 2011 at 5:57 PM, Craig cr...@haquarter.de wrote: I hereby request the feature to do https to backends Sometimes it's really troublesome not being able to do that, even more so if a different party administrates the servers. I'm not sure if you're serious or not,

Re: https from source to destination

2011-07-13 Thread James Bardin
On Wed, Jul 13, 2011 at 8:20 PM, Craig cr...@haquarter.de wrote: I'm not sure if you're serious or not, but If another party as administrating the backend servers, it seems likely that you won't have the private key for the ssl certificate. Yea I am, I would't dare to write shitty semi-joke