Hi.
I wanted to cleanup some old issues but was not able due to the fact
that I'm not sure if the bugs are still valid, especially for 1.8/1.9
and previous versions.
https://github.com/haproxy/haproxy/issues?page=10&q=is%3Aissue+is%3Aopen
It would be nice when someone with more knowledge then I
Hi.
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
The discussion is here.
https://github.com/criteo/haproxy-spoe-go/issues/28
That's the sid in filter spoa log output.
SPOE: [agent-on-http-req] sid=88 st=0
0/0/0/0/0 1/1 0/0 10/33
htt
Hi.
On 31.05.21 14:23, Aleksandar Lazic wrote:
Hi.
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
Attached a patch which adds the fetch sample for the stream id.
I assume it could be back ported up to version 2.0
Regards
Alex
The
Fix alphabetical order of uuid
>From bb84a45b848b879f41ab37343b50057323a6ff19 Mon Sep 17 00:00:00 2001
From: Alexandar Lazic
Date: Tue, 1 Jun 2021 00:27:01 +0200
Subject: [PATCH] DOC/MINOR: move uuid in the configuration to the right
alphabetical order
This patch can be backported up to 2.1 whe
Tim.
On 31.05.21 23:23, Tim Düsterhus wrote:
Aleks,
On 5/31/21 9:35 PM, Aleksandar Lazic wrote:
While I try to get the stream id from spoa I recognized that there is no fetch
method for the streamID.
Attached a patch which adds the fetch sample for the stream id.
I assume it could be back
Tim,
Jun 1, 2021 9:50:17 AM Tim Düsterhus :
> Aleks,
>
> On 6/1/21 1:03 AM, Aleksandar Lazic wrote:
>>>> srv_conn([/]) : integer
>>>> Returns an integer value corresponding to the number of currently
>>>> established
>>>> con
On 01.06.21 14:23, Tim Düsterhus wrote:
Aleks,
On 6/1/21 10:30 AM, Aleksandar Lazic wrote:
This phrasing is understandable to me, but now I'm wondering if this is the
best solution. Maybe the already existing user-configurable unique request ID
should instead be sent to the SPOE and
On 02.06.21 11:38, Christopher Faulet wrote:
Le 6/1/21 à 8:26 PM, Aleksandar Lazic a écrit :
On 01.06.21 14:23, Tim Düsterhus wrote:
Aleks,
On 6/1/21 10:30 AM, Aleksandar Lazic wrote:
This phrasing is understandable to me, but now I'm wondering if this is the best
solution. Maybe the al
On 04.06.21 21:32, Jim Freeman wrote:
https://developer.chrome.com/docs/extensions/reference/proxy/
supports SOCKS4/SOCKS5
Does anyone know of any in-browser VPN/proxy extensions that support
Willy's Proxy Protocol ?
https://www.haproxy.com/blog/haproxy/proxy-protocol/ enumerates some
of the sta
Hi.
This patch fixes the usage of req_ssl_sni in the doc.
Any plan to remove the old keyword or add some warning that this
keyword is deprecated?
Regards
Alex
>From 84fe0fa89548c384322f47bc3eb37ea9843d0eb8 Mon Sep 17 00:00:00 2001
From: Alex
Date: Sat, 5 Jun 2021 13:23:08 +0200
Subject: [PATCH
Hi.
I use haproxy 2.4 with this fe config.
```
global
log stdout format raw daemon
daemon
maxconn 2
stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd
listeners
stats timeout 30s
tune.ssl.default-dh-param 2048
# Default SSL material locations
Hi.
On 11.06.21 18:07, Aleksandar Lazic wrote:
Hi.
I use haproxy 2.4 with this fe config.
```
global
log stdout format raw daemon
daemon
maxconn 2
stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd
listeners
stats timeout 30s
Hi.
when someone works again on src/queue.c could be this typo fixed.
http://git.haproxy.org/?p=haproxy.git;a=blob;f=src/queue.c;h=6d3aa9a12bcd6078d1b5a76969da4104a6adb1bd;hb=HEAD#l47
```
44 * - a pendconn_add() is only performed by the stream which will own the
45 * pendconn ; the
Hi Remi.
On 02.07.21 16:26, Remi Tricot-Le Breton wrote:
Hello list,
Some work in ongoing to ease connection error and SSL handshake error logging.
This will rely on some new sample fetches that could be added to a custom
log-format string.
In order to ease SSL logging and debugging, we will al
On 03.07.21 13:27, Илья Шипицин wrote:
сб, 3 июл. 2021 г. в 16:22, Aleksandar Lazic mailto:al-hapr...@none.at>>:
Hi Remi.
On 02.07.21 16:26, Remi Tricot-Le Breton wrote:
> Hello list,
>
> Some work in ongoing to ease connection error and SSL handshake
On 08.07.21 18:33, Willy Tarreau wrote:
Hi all,
Amaury discovered that "option http_proxy" was broken. I quickly checked
when it started, and it got broken with the introduction of HTX in 1.9
three years ago. It still used to work in legacy mode in 1.9 and 2.0
but 2.0 uses HTX by default and leg
On 08.07.21 19:44, Aleksandar Lazic wrote:
On 08.07.21 18:33, Willy Tarreau wrote:
Hi all,
Amaury discovered that "option http_proxy" was broken. I quickly checked
when it started, and it got broken with the introduction of HTX in 1.9
three years ago. It still used to work in lega
Hi.
FYI that the 1.22 have some changes which also impacts Ingress and Endpoints.
https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-22
Regards
Alex
On 16.07.21 10:27, Илья Шипицин wrote:
I wonder if Kubernetes has sort of ingress compliance test. Or is it up to
ingress itself
Yes, there is such a thing but I never used it.
https://github.com/kubernetes-sigs/ingress-controller-conformance
On Fri, Jul 16, 2021, 1:21 PM Aleksandar Lazic
Hi.
On 16.07.21 14:34, Anilton Silva Fernandes wrote:
Hi there…
Can I get another HELP:
This time, I want to receive a request, and check for URL to know which backend
should be call.
This is my config:
frontend web_accounts
mode tcp
bind 10.15.1.12:443
default_backend accoun
Hi.
We use the HAProxy 2.4 image which have now HAProxy 2.4.2.
https://hub.docker.com/layers/haproxy/library/haproxy/2.4/images/sha256-d5e2a5261d6367c31c8ce9b2e692fe67237bdc29f37f2e153d346e8b0dc7c13b?context=explore
I get this message for dynamic cookies.
```
[WARNING] (1) : We generated two e
On 11.08.21 09:04, Willy Tarreau wrote:
Hi Aleks,
On Mon, Aug 09, 2021 at 06:40:29PM +0200, Aleksandar Lazic wrote:
Hi.
We use the HAProxy 2.4 image which have now HAProxy 2.4.2.
https://hub.docker.com/layers/haproxy/library/haproxy/2.4/images/sha256
Hi.
In the doc is this part
http://cbonte.github.io/haproxy-dconv/2.4/configuration.html#4-http-reuse
```
By default, a connection established between HAProxy and the backend server
which is considered safe for reuse is moved back to the server's idle
connections pool so that any other request
On 17.08.21 16:58, Willy Tarreau wrote:
Hi Alex,
On Tue, Aug 17, 2021 at 02:19:38PM +0200, Aleksandar Lazic wrote:
```
3424 if ((curproxy->mode != PR_MODE_HTTP) &&
(curproxy->options & PR_O_REUSE_MASK) != PR_O_REUSE_NEVR)
3425
On 08.09.21 11:07, Willy Tarreau wrote:
On Wed, Sep 08, 2021 at 01:58:00PM +0500, ??? wrote:
??, 8 . 2021 ?. ? 13:54, Willy Tarreau :
On Wed, Sep 08, 2021 at 12:05:23PM +0500, ??? wrote:
Hello, Bob
I tracked an issue https://github.com/haproxy/haproxy/issues/1386
let
On 16.10.21 16:22, Willy Tarreau wrote:
Hi,
HAProxy 2.5-dev10 was released on 2021/10/16. It added 75 new commits
after version 2.5-dev9.
The smoke is progressively being blown away and we're starting to see
clearer what final 2.5 will look like.
In completely random order, here are the main c
On 04.11.21 15:28, Willy Tarreau wrote:
Hello,
as some of you know, 2.5 will come with a new "option httpslog" to ease
logging some useful TLS info by default.
While running some tests in production with the error-log-format, I
realized that we're not logging the SNI in "httpslog", and that it'
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a stick table and share it via peers.
Have anyone such a solution already in place?
That's my assuption for the config.
```
peers be_pixel_peers
bind 9123
log global
localpeer {{ ansibl
Hi.
Have anybody some hints or tips about the question?
Regards
Alex
On 08.11.21 12:26, Aleksandar Lazic wrote:
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a stick table and share it via peers.
Have anyone such a solu
Hi Joao.
Thank you very much. I will give it a try.
Regards
Alex
On 10.11.21 22:25, Joao Morais wrote:
Em 8 de nov. de 2021, à(s) 08:26, Aleksandar Lazic
escreveu:
Hi.
I have 2 LB's which should limit the connection to one backend.
I would try to use "conn_cur" in a
Hi.
I try to test some limits with peers and wanted to test "maxconn 0" before I
start with the peers.
Should "maxconn 0" work?
I expect to get connection refused or similar and and 500 in the log but both
curls get a 200
```
# curl -v http://127.0.0.1:8080/; curl -v http://127.0.0.1:8080/
`
On 02.12.21 15:12, Frank Wall wrote:
On 2021-12-02 02:16, Aleksandar Lazic wrote:
I try to test some limits with peers and wanted to test "maxconn 0"
before I start with the peers.
Should "maxconn 0" work?
I expect to get connection refused or similar and and 500 in the log
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman logs -f haproxy-dest
[NOTICE] (1) : New worker #1 (3) forked
<6>[04/Dec/2021:12:14:34.437] 200 58 - - LR-- {} "GET / HTTP/1.1"
<6>[04/Dec/2021:12:14:34.437] 200 58 - - LR--
Hi.
I try to protect an backend server against a overload within a master/master
setup.
The test setup looks like this
lb1: 8081 \
-hap-dest: 8080
lb2: 8082 /
When I now call lb1 with curl the "tracker/quota1" gpc is increased and the
second request is denied.
The problem is that
On 06.12.21 08:25, Christopher Faulet wrote:
Le 12/4/21 à 13:25, Aleksandar Lazic a écrit :
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman logs -f haproxy-dest
[NOTICE] (1) : New worker #1 (3)
Hi.
Anyone which can help to protect the backen with backend states?
Regards
Alex
On 05.12.21 11:42, Aleksandar Lazic wrote:
Hi.
I try to protect an backend server against a overload within a master/master
setup.
The test setup looks like this
lb1: 8081 \
-hap-dest: 8080
lb2
On 08.12.21 10:20, Christopher Faulet wrote:
Le 12/6/21 à 08:25, Christopher Faulet a écrit :
Le 12/4/21 à 13:25, Aleksandar Lazic a écrit :
Hi.
I try to capture the response header "dst_conn" from "http-request return" but
in %hs isn't the value.
```
podman log
On 13.12.21 11:48, Olivier D wrote:
Hello there,
If you don't know yet, a CVE was published on friday about library log4j,
allowing a remote code execution
with a crafted HTTP request.
We would like to filter these requests on HAProxy to lower the exposition. At
peak times, 20% of our web
tra
On 13.12.21 14:03, Lukas Tribus wrote:
On Mon, 13 Dec 2021 at 13:25, Aleksandar Lazic wrote:
1. Why is a input from out site of the application passed unchecked to the
logging library!
Because you can't predict the future.
When you know that your backend is SQL, you escape what's
On 13.12.21 14:53, Lukas Tribus wrote:
On Mon, 13 Dec 2021 at 14:43, Aleksandar Lazic wrote:
Well I go the other way around.
The application must know what data are allowed, verify the input and if the
input is not valid discard it.´
You clearly did not understand my point so let me try
Hi.
On 14.12.21 10:18, Olivier D wrote:
Hi,
Le lun. 13 déc. 2021 à 19:38, John Lauro mailto:johnala...@gmail.com>> a écrit :
http-request deny deny_status 405 if { url_sub -i "\$\{jndi:" or hdr_sub(user-agent)
-i "\$\{jndi:" }
was not catching the bad traffic. I think the escapes wer
Hi.
Do you agree that we now can add HAProxy to that list :-)
https://github.com/quicwg/base-drafts/wiki/Implementations
My suggestion, please help me to file the ??:
IETF QUIC Transport
HAProxy:
QUIC implementation in HAProxy
Language: C
Version: draft-29??
Roles: Server, Cli
On 19.12.21 13:52, Willy Tarreau wrote:
Hi Aleks,
On Sun, Dec 19, 2021 at 01:43:01PM +0100, Aleksandar Lazic wrote:
Do you agree that we now can add HAProxy to that list :-)
https://github.com/quicwg/base-drafts/wiki/Implementations
Ideally we should submit it once we have a public server
Hi.
On 20.12.21 09:40, Christoph Kukulies wrote:
Due to some recent action I did from some may outdated instructions for haproxy
1.6 under Ubuntu
I have a left off broken haproxy repo which comes up everytim I’m doing
apt-updates:
Ign:3 http://ppa.launchpad.net/vbernat/haproxy-1.6/ubuntu bi
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31 lb1 haproxy[20008]: A bogus STREAM [0x559faa07b4f0] is spinning
at 204371 calls per second
and refuses to die, aborting now!
Please report this error to developers
[strm=0x559faa07b4f0,123
Hi.
On 28.12.21 19:35, brendan kearney wrote:
list members,
i am running haproxy, and see some errors with requests. i am trying to
understand why the errors are being thrown. haproxy version and error
info below. i am thinking that the host header is being exposed outside
the TLS encryption
Hi.
On 01.01.22 20:56, Henning Svane wrote:
Hi
I have used it for some time in PFsense, but know made a Linux installation and now the configuration
give me some troubles.
What have I done wrong here below?
As I cannot see what I should have done different, but sudo haproxy -c -f /etc/hapro
On 04.01.22 10:16, Christopher Faulet wrote:
Le 12/25/21 à 23:59, Aleksandar Lazic a écrit :
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31 lb1 haproxy[20008]: A bogus STREAM [0x559faa07b4f0] is spinning
at 204371 calls per second
On 04.01.22 14:10, Christopher Faulet wrote:
Le 1/4/22 à 10:26, Aleksandar Lazic a écrit :
On 04.01.22 10:16, Christopher Faulet wrote:
Le 12/25/21 à 23:59, Aleksandar Lazic a écrit :
Hi.
as the message tell us that we should report this to the developers I do so :-)
```
Dec 24 01:10:31
On 12.01.22 17:06, Andrew Anderson wrote:
On Thu, Dec 30, 2021 at 10:15 PM Willy Tarreau mailto:w...@1wt.eu>> wrote:
On Wed, Dec 29, 2021 at 12:29:11PM +0100, Aleksandar Lazic wrote:
> > 0 CONNECT download.eclipse.org:443 HTTP/1.1\r\n
> &g
On 12.01.22 21:52, Andrew Anderson wrote:
On Wed, Jan 12, 2022 at 11:58 AM Aleksandar Lazic mailto:al-hapr...@none.at>> wrote:
Well, looks like you want a forward proxy like squid not a reverse proxy
like haproxy.
The application being load balanced is a proxy, so http_proxy is
Hi.
On 31.01.22 16:51, Roberto Carna wrote:
Dear all, I have haproxy-1.5.18-3.el7.x86_64 running OK.
You should consider to use a maintained version as 1.5 is End of Life from the
community.
https://www.haproxy.org/
https://github.com/DBezemer/rpm-haproxy
Development area are claiming for a
Hi.
On 10/02/2022 10:25, Gowri Shankar wrote:
Im trying to install haproxy for loadbalancing for my servers,but im
not able install from my windows system.Is there ha proxy available
for windows, please give and help us with documentation.
Well I don't think that there is a native Windows bina
Hi.
Here the first patch for feature request "New Balancing algorithm (Peak) EWMA
#1570"
regards
AlexFrom e95bf6a4bf107fdc59696c4b4a4ef7b03133b813 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Thu, 24 Feb 2022 02:56:21 +0100
Subject: [PATCH] MINOR: sample: Add srv_rtt se
Hi Willy.
On 25.02.22 14:54, Willy Tarreau wrote:
Hi Alex,
On Thu, Feb 24, 2022 at 03:03:59AM +0100, Aleksandar Lazic wrote:
Hi.
Here the first patch for feature request "New Balancing algorithm (Peak) EWMA
#1570"
Note, I don't think it is needed for this algo as long as
Hi.
On 28.02.22 13:55, Branitsky, Norman wrote:
Future requirement for HAProxy?
https://datatracker.ietf.org/doc/draft-kampanakis-tls-scas-latest/
From my point of view is this draft heavily based on the implementation of the
underlaying TLS library.
For everyone which want to know what th
Hi Shawn.
On 01.03.22 23:09, Shawn Heisey wrote:
I was thinking about ways to help pinpoint problems a client is having
connecting to services. And a thought
occurred to me.
Is there any kind of software available that can stand up a broken HTTP server,
such that it is broken in very
speci
On 15.03.22 05:36, Eli Bechavod wrote:
Hii guys,
I am looking for rpm to version 2.4.14 and didn’t found that ..
Why on image base centos/rhel did you stop in 1.8 ? I saw that I can install
with a makefile but it old way .. :( .
I would to sound if you have any solutions
You can create a r
Hi Willy.
On Sat, 26 Mar 2022 10:22:02 +0100
Willy Tarreau wrote:
> Hi,
>
> HAProxy 2.6-dev4 was released on 2022/03/26. It added 80 new commits
> after version 2.6-dev3.
>
> The activity started to calm down a bit, which is good because we're
> roughly 2 months before the release and it will
Hi.
This patch removes some double blanks.
Regards
Alex
>From a65450d3da357c659b00bd3ecb5a038a1f827692 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Wed, 30 Mar 2022 00:11:40 +0200
Subject: [PATCH] DOC: remove double blanks in confiuration.txt
Double blanks in keywords are not good
Hi.
I'm not sure if I understand the doc properly.
https://docs.haproxy.org/2.2/configuration.html#nbthread
```
This setting is only available when support for threads was built in. It
makes haproxy run on threads. This is exclusive with "nbproc". While
"nbproc" historically used to be the only
Hi,
On Tue, 26 Apr 2022 03:32:16 -0700
Ivana Paul wrote:
> Hello haproxy.org
[SPAM Content]
New Idea for spam "learning platform" :-)
I never heard anything about "SMO services" and now I know it's this.
Social Media Optimization (SMO) Services
Regard
Alex
On Tue, 26 Apr 2022 15:03:51 +0200
Valerio Pachera wrote:
> Hi, I have several backend configuration that make use of a custom script:
>
> external-check command 'custom-script.sh'
>
> The script read uses the environment variables such as $HAPROXY_PROXY_NAME.
> I would like to be able to set a
Hi.
Anyone any Idea about the question below?
Regards
Alex
On Sat, 23 Apr 2022 11:05:36 +0200
Aleksandar Lazic wrote:
> Hi.
>
> I'm not sure if I understand the doc properly.
>
> https://docs.haproxy.org/2.2/configuration.html#nbthread
> ```
> This setting is only
Hi Nick.
On Sat, 30 Apr 2022 05:44:09 +
Nick Owen wrote:
> So I am pretty new to networking and I am not quite sure how to set up the
> config file correctly. I just want a simple reverse proxy and I have created
> a diagram to show you how’d I’d like it configured. If you have any sites or
Hi.
On Mon, 2 May 2022 14:44:45 +
Dave Swinton wrote:
> Do you have a repository for the current releases in RPM? We are currently
> using 1.8 but would like to move to 2.5.x after some internal testing but
> don't see any direct links to an RPM from the download page.
You can build your ow
Hi Mark.
On Thu, 19 May 2022 17:29:37 +0100
Mark Zealey wrote:
> Hi there,
>
> We are using HAProxy to terminate and balance TCP streams (XMPP) between
> our apps and our service infrastructure. We are currently running
> XMPP-level gzip compression but I'm interested in potentially shifting
>
On Fri, 20 May 2022 12:16:07 +0100
Mark Zealey wrote:
> Thanks, we may use this for a very rough proof-of-concept. However we
> are dealing with millions of concurrent connections, 10-100 million
> connections per day, so we'd prefer to pay someone to develop (+ test!)
> something for haproxy
Hi.
On Tue, 24 May 2022 20:56:14 +
"Alford, Mark" wrote:
> Do you have instruction on the exact library needed to fo the full install on
> RHEL 7 and RHEL 8
>
> I read the INSTALL doc in the tar ball and the did the make command and it
> failed because of LUA but lua.2.5.3 is installed
Ple
Hi Ryan.
On Thu, 26 May 2022 13:28:58 -0500
"Ryan O'Hara" wrote:
> On Wed, May 25, 2022 at 11:15 AM William Lallemand
> wrote:
>
> > On Tue, May 24, 2022 at 08:56:14PM +, Alford, Mark wrote:
> > > Do you have instruction on the exact library needed to fo the full
> > install on RHEL 7 and
Hi.
On Sat, 28 May 2022 11:42:17 +
Ajay Mahto wrote:
> Unsubscribe me.
Feel free to do it by your self.
https://www.haproxy.org/#tact
Regards
Alex
> Regards,
>
> Ajay Kumar Mahto,
> Lead DevOps Engineer,
> NPCI, Hyderabad
> +91 8987510264
>
> From: Willy
Hi.
On Fri, 3 Jun 2022 17:12:25 +0200
Seena Fallah wrote:
> When using the below config to have 100req/s rate-limiting after passing
> the 100req/s all of the reqs will deny not reqs more than 100req/s!
> ```
> listen test
> bind :8000
> stick-table type ip size 100k expire 30s store h
Hi spfma.tech.
Uff, the mail is quite hard to read but looks like you are on ubuntu.
Maybe this page can help to solve your issue.
Enable TLSv1 in Ubuntu 20.04
https://ndk.sytes.net/wordpress/?p=1169
Regards
Alex
On Thu, 09 Jun 2022 09:58:10 +0200
spfma.t...@e.mail.fr wrote:
> Hi, Thanks fo
HI.
On Wed, 15 Jun 2022 23:33:27 +1000
Philip Young wrote:
> Hi
> I am currently writing a LUA module to make authorisation decisions on
> whether a request is allowed, by calling out to another service to make the
> authorisation decision.
> In the Lua module, I am using Socket.connect_ssl() to
ttps://git.haproxy.org/?p=haproxy.git;a=blob;f=src/hlua.c;hb=HEAD#l12530
Again it's just a assumption as I had never the requirements to use client
certificates with haproxy.
Regards
Alex
> Thanks anyway
>
> Sent from my iPhone
>
> > On 16 Jun 2022, at 12:03 am, Aleksandar
Hi.
Attached a doc patch about ssl-engine and 2.6 is related to
https://github.com/haproxy/haproxy/issues/1752
Regards
Alex
>From 85bcc5ea26d7c1f468dbbf6a10b33bc9f79da819 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Wed, 15 Jun 2022 23:52:30 +0200
Subject: [PATCH] DOC: add info ab
On Thu, 16 Jun 2022 10:22:30 +0200
Christopher Faulet wrote:
> Le 6/16/22 à 05:12, David Leadbeater a écrit :
> > I tried upgrading to 2.6.0 (from 2.5.6) and I'm seeing a segfault when
> > making HTTP/2 requests. I'm using a frontend in TCP mode and then
> > switching it to HTTP/2.
> >
> > I've
On Thu, 16 Jun 2022 20:49:00 +1000
David Leadbeater wrote:
> On Thu, 16 Jun 2022 at 20:27, Aleksandar Lazic wrote:
> [...]
> > > Thanks ! I'm able to reproduce the segfault. I'm on it.
>
> Thanks!
>
> > But in any way wouldn't be better that the r
Hi Willy.
On Fri, 24 Jun 2022 22:58:53 +0200
Willy Tarreau wrote:
> Hi,
>
> HAProxy 2.7-dev1 was released on 2022/06/24. It added 131 new commits
> after version 2.7-dev0.
>
> There's not that much new stuff yet but plenty of small issues were
> addressed, and it's already been 3 weeks since t
Hi.
On Tue, 28 Jun 2022 12:23:15 +0200
spfma.t...@e.mail.fr wrote:
> Hi, I have a problem to solve : I never paid attention to the fact HAProxy
> (2.5.1-86b093a) did not return HTTP headers in the reponses, because there
> was no complaints so far. But now we got one, because of an old applicat
Hi Tim.
Thank you for your feedback.
Attached the new version
regards
Alex
On 16.06.22 15:16, Tim Düsterhus wrote:
Alex,
From 85bcc5ea26d7c1f468dbbf6a10b33bc9f79da819 Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Wed, 15 Jun 2022 23:52:30 +0200
Subject: [PATCH] DOC: add info about
Hi Eric.
On 11.08.22 21:59, Eric Johanson wrote:
When HAProxy generates an HTTP 500 error (say because our servers are down),
then HAProxy does not send any CORS
information. Because of this, the HTTP 500 responses do not arrive at our web
application because they are
blocked by the browser.
more like this for the other required CORS headers
I haven't tried this, but does it some like it will accomplish what I described
in my original post?
I would say give it a try and see if works.
Regards
Alex
-Original Message-
From: Aleksandar Lazic
Sent: Friday, August 12, 2022 6:45
Hi.
On 17.08.22 16:54, Pavel Krestovozdvizhenskiy wrote:
Does HAProxy support of 3rd party modules? Not LUA scripts but compiled
modules. Something like modules in nginx. I've read the documentation
and did not found clear answer.
Not as far as i know, a more detailed answer can be found here
Hi.
On 18.08.22 20:40, Roberto Carna wrote:
Dear all, I have to change my haproxy.cfg file in order to enable two
FTP connections to the same server, with these requirements:
FTP server IP: 10.10.1.10
1st FTP service:
FTP Control: port 21
FTP Data: port 11000 to 11010
2nd FTP service:
FTP Con
Hi William.
On 14.09.22 18:50, William Lallemand wrote:
Hello List,
We've just finished the portage of HAProxy for the next libreSSL
version which implements the quicTLS API.
Wow great news.
For those interested this is how you are supposed to compile everything:
The libreSSL library:
Hi.
On 03.10.22 16:29, Roberto Carna wrote:
Dear, I have a HAProxy with several web applications but I have to
solve the cookie without a secure flag problem in just one web
application.
Do I have to define the "http-response replace header" option in the
frontend section or in the backend sect
Hi John.
I suggest to get in touch whith HAProxy company via this form.
https://www.haproxy.com/contact-us/
best regards
alex
07.10.2022 17:55:42 John Bowling (CE CEN) :
> Hello,
>
> What are the costs for the license or is there a subscription for license?
>
> *John L. Bowling (JB)*
>
> Se
Hi Roberto.
On 24.10.22 03:21, Roberto Carna wrote:
Dear, I have this scenario:
Internet --> HAproxy Frontend --> HAproxy Backend --> Web servers
HAproxy version 1.5.8 in frontend (disabling protocols in the backend
section connected to HAProxy backend):
server HA-Backend 172.20.20.1:443 ssl
Hi Roberto.
On 25.10.22 17:01, Roberto Carna wrote:
Sorry, I want two different backends with same IP/port and different
SSL options as follow, and the same SSL wildcard certificate:
# Frontend 1 with certain SSL options
frontend Web1
bind 10.10.1.1:443 ssl crt /root/ssl/ no-sslv3 no-tlsv10 no-
Hi.
On 04.11.22 12:24, Szabo, Istvan (Agoda) wrote:
Hi,
Is there anybody successfully configured haproxy and dsr?
Well maybe this Blog Post is a good start point.
https://www.haproxy.com/blog/layer-4-load-balancing-direct-server-return-mode/
Regards
Alex
Istvan Szabo
Senior Infrastructure
Dear Carolina.
Please get in touch with the HAProxy Company for a offer.
https://www.haproxy.com/contact-us/
This Mailing list is for the OpenSource HAProxy.
Regards
Alex
On 07.11.22 13:06, Coco, Carolina wrote:
Hi team,
Could you please send us an offer for the marked in yellow?, its for on
hi.
but there is a 429 error code in the source.
https://git.haproxy.org/?p=haproxy.git&a=search&h=HEAD&st=grep&s=HTTP_ERR_429
As you don't written which version you use, maybe you can use the latest 2.6
version and give the error code 429 a chance :-)
regards
alex
17.11.2022 16:29:02 Chilaka
Hi.
On 22.11.22 21:57, Branitsky, Norman wrote:
I have the following "generic" rate limit defined - 150 requests in 10s
from the same IP address:
stick-table type ip size 100k expire 30s store http_req_rate(10s)
http-request track-sc0 src unless { src -f
/etc/CONFIG/haproxy/cidr.ls
nfig.
Is this what you would like to do?
I'm not sure if this is possible with HAProxy.
Regards
Alex
Norman Branitsky
Senior Cloud Architect
P: 416-916-1752
-Original Message-
From: Aleksandar Lazic
Sent: Tuesday, November 22, 2022 4:27 PM
To: Branitsky, Norman
Cc: HAProxy
Su
Hi.
There is already a bug entry in apache bz from 2019 about that message.
https://bz.apache.org/bugzilla/show_bug.cgi?id=63893
Regards
Alex
23.11.2022 21:36:26 Marcello Lorenzi :
> Hi All,
> we use haproxy 2.2.17-dd94a25 in our development environment and we configure
> a backend with proxy
t from the backend, Imho.
Does anybody know how I can "delay/sleep/wait" for the server answer to
get some rtt which are not 0 as the rtt is 0.
Regards
AlexFrom 7610bb7234bd324e06e56732a67bf8a0e65d7dbc Mon Sep 17 00:00:00 2001
From: Aleksandar Lazic
Date: Fri, 9 Dec 2022 13:05:52 +0100
Su
Hi,
Any feedback to that patch?
On 09.12.22 13:17, Aleksandar Lazic wrote:
Hi.
As I still think that the Balancing algorithm (Peak) EWMA (
https://github.com/haproxy/haproxy/issues/1570 ) could help to make a
"better" decision to which server should the request be send, here the
On 07.01.23 10:38, Willy Tarreau wrote:
Hi,
HAProxy 2.8-dev1 was released on 2023/01/07. It added 206 new commits
after version 2.8-dev0.
[snipp]
Any chance to add this patch to 1.8?
[PATCH] MINOR: sample: Add bc_rtt and bc_rttvar
https://www.mail-archive.com/haproxy@formilux.org/msg42962
On 09.12.22 13:17, Aleksandar Lazic wrote:
Hi.
As I still think that the Balancing algorithm (Peak) EWMA (
https://github.com/haproxy/haproxy/issues/1570 ) could help to make a
"better" decision to which server should the request be send, here the
beginning of the patches.
In
1 - 100 of 1095 matches
Mail list logo