Hi,
On Wed, Mar 25, Shawn Heisey wrote:
> On 3/25/2015 10:16 AM, Brandon wrote:
> > Hi, I am trying to deploy HAProxy in HTTP mode in front of a Windows
> > Server 2012 R2 ADFS 3.0 farm. In ADFS 3.0 backend servers require that
> > clients support SNI.
> >
> > In my testing it does not appear th
Hi Joseph,
On Wed, Mar 25, 2015 at 06:45:29PM -0700, Joseph Lynch wrote:
> Willy,
>
> Thank you for the feedback. I believe that the patch attached at the
> bottom of this email incorporates your suggestions. Please let me know
> any further steps I need to take.
It took me a while to remember t
On 3/25/2015 10:16 AM, Brandon wrote:
> Hi, I am trying to deploy HAProxy in HTTP mode in front of a Windows
> Server 2012 R2 ADFS 3.0 farm. In ADFS 3.0 backend servers require that
> clients support SNI.
>
> In my testing it does not appear that HAProxy is sending the ServerName
> extension in t
Willy,
Thank you for the feedback. I believe that the patch attached at the
bottom of this email incorporates your suggestions. Please let me know
any further steps I need to take.
As for testing, I ran the following test:
=== Test Setup ===
I set up a config, used netcat to create some dummy s
On 25 March 2015 at 23:14, Dennis Jacobfeuerborn wrote:
> Hi,
> I'm trying to make the haproxy configuration more dynamic using
> environment variables and while this works for the definition of the pid
> file and the stats socket when I try to use an env. variable as the port
> of a peer definiti
Hi,
I'm trying to make the haproxy configuration more dynamic using
environment variables and while this works for the definition of the pid
file and the stats socket when I try to use an env. variable as the port
of a peer definition I get an error:
peers lb1-peers
peer haproxy1-lb1 10.13.3.3
Hi, I am trying to deploy HAProxy in HTTP mode in front of a Windows Server
2012 R2 ADFS 3.0 farm. In ADFS 3.0 backend servers require that clients
support SNI.
In my testing it does not appear that HAProxy is sending the ServerName
extension in the TLS handshake and as a result I am receiving a "
Keepalives did the trick. Cheers!
From: Nathan Williams [mailto:nath.e.w...@gmail.com]
Sent: Tuesday, March 24, 2015 16:02
To: Jim Gronowski
Cc: haproxy@formilux.org
Subject: Re: timeout values for redis?
i should probably add... setting all members to backups means of course that
only the firs
From: jeffsar...@hotmail.com
To: haproxy@formilux.org
Subject: RE: Which signal causes HAProxy to reload its config
Date: Wed, 25 Mar 2015 10:20:57 -0400
> From: marc-anto...@perennou.com
> Date: Wed, 25 Mar 2015 12:42:21 +0100
> Subject: Re: Which signal causes HAProxy to reload its config
>
> From: marc-anto...@perennou.com
> Date: Wed, 25 Mar 2015 12:42:21 +0100
> Subject: Re: Which signal causes HAProxy to reload its config
> To: jeffsar...@hotmail.com
> CC: haproxy@formilux.org
>
> On 25 March 2015 at 12:25, jeff saremi wrote:
> > I have to do manually what "-sf" is supposed to b
> From: marc-anto...@perennou.com
> Date: Wed, 25 Mar 2015 12:42:21 +0100
> Subject: Re: Which signal causes HAProxy to reload its config
> To: jeffsar...@hotmail.com
> CC: haproxy@formilux.org
>
> On 25 March 2015 at 12:25, jeff saremi wrote:
>> I have to do manually what "-sf" is supposed to
On 25 March 2015 at 12:25, jeff saremi wrote:
> I have to do manually what "-sf" is supposed to be doing since it's either
> not working or not supported and removed.
> I know what that does is send a signal to the pid stored by the haproxy
> process. I'd like to do that myself.
> Just need to k
I have to do manually what "-sf" is supposed to be doing since it's either not
working or not supported and removed.
I know what that does is send a signal to the pid stored by the haproxy
process. I'd like to do that myself.
Just need to know the signal name.
thanks
jeff
Hi Fraj,
You need to re-order your configuration and slightly update it:
acl white_list src 127.0.0.1 192.168.1.0/24
acl restricted_page path_beg /images
http-request allow if restricted_page
http-request allow if white_list
http-request deny
Baptiste
On Wed, Mar 25, 2015 at 10:18 AM, Fraj
Hi,
some useful examples can be taken from this blog post:
http://blog.haproxy.com/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/
Just replace src by hdr(X-Forwarded-For).
Baptiste
On Tue, Mar 24, 2015 at 5:58 PM, Jarno Huuskonen wrote:
> Hi,
>
> On Tue, Mar 24, Klavs
Hi Martin,
HAProxy can report an 'id' of a backend and of a server.
You can give a try to this:
http-response set-header X-Backend-Info %[be_id]/%[srv_id] if { src
10.0.0.0/24 }
It should add the following header if the first server of the first
backend was used:
X-Backend-Info: 1/1
IDs can
Hello,
below my haproxy configuration.
how can i make the images directory accessible for all clients?
Thanks.
global
log 127.0.0.1 local0
log 127.0.0.1 local1 notice
#log loghostlocal0 info
maxconn 4096
#debug
#quiet
user haproxy
17 matches
Mail list logo
