Re: Adding Configuration parts via File

2019-03-08 Thread Aleksandar Lazic
Hi. In addition to Bruno's answer there was a thread on the ML which explains why such a "simple" directive like include isn't easy to implement. https://www.mail-archive.com/haproxy@formilux.org/msg05215.html As I also think that in some setups can a include can make the main config shorter

Re: Does anyone *really* use 51d or WURFL ?

2019-03-05 Thread Aleksandar Lazic
Hi. Am 05.03.2019 um 13:47 schrieb Willy Tarreau: > Hi all, > > back to this old thread : > > On Mon, Jan 21, 2019 at 03:36:22PM +0100, Willy Tarreau wrote: >> I don't know if wurfl builds at all by the way since the last update to >> the module is its introduction more than 2 years ago. > >

Re: http/2 server-push support

2019-02-27 Thread Aleksandar Lazic
Hi Patrick. Am 26.02.2019 um 20:13 schrieb Patrick Hemmer: > Now that we have h2 support on frontends, backends, trailers, etc, I'm hoping > that server side server-push is somewhere on the roadmap. By "server side" I > mean not this middleware based server-push methodology frequently used where

Re: RTMP and Seamless Reload

2019-02-21 Thread Aleksandar Lazic
me being. Sounds like a solution. > Thanks, > > *Erlangga Pradipta Suryanto* Regards Aleks > __ > > *T. *+62118898168| *BBM PIN. D8F39521*__ > > *E. esuryanto*@bbmtek.com <mailto:mtal...@bbmtek.com> > > > > > On Thu, Jan 31, 2019 at 10:39

Question about haproxy in front of coturn turnserver

2019-02-20 Thread Aleksandar Lazic
Hi. I would like to run haproxy in front of the https://github.com/coturn/coturn turnserver for nextcloud talk. Have anyone tried this or have setup-ed successfully such a config? I would like to disable the udp part on coturn `no-udp` just because for now have haproxy not the option to proxy

Re: Tune HAProxy in front of a large k8s cluster

2019-02-15 Thread Aleksandar Lazic
Am 15.02.2019 um 22:11 schrieb Joao Morais: > >> Em 15 de fev de 2019, à(s) 08:43, Aleksandar Lazic >> escreveu: >> >> Hi Joao. >> >> Am 15.02.2019 um 11:15 schrieb Joao Morais: >>> >>> Hi Aleks, sure. Regarding the config, it has

Re: Tune HAProxy in front of a large k8s cluster

2019-02-15 Thread Aleksandar Lazic
Hi Joao. Am 15.02.2019 um 11:15 schrieb Joao Morais: > > >> Em 15 de fev de 2019, à(s) 07:44, Aleksandar Lazic >> escreveu: >> >> Hi Joao. >> >> Am 15.02.2019 um 10:21 schrieb Joao Morais: >>> >>> Hi list, I'm tuning some

Re: Tune HAProxy in front of a large k8s cluster

2019-02-15 Thread Aleksandar Lazic
Hi Joao. Am 15.02.2019 um 10:21 schrieb Joao Morais: > > Hi list, I'm tuning some HAProxy instances in front of a large kubernetes > cluster. The config has about 500 hostnames (a la apache/nginx virtual > hosts), 3 frontends, 1500 backends and 4000 servers. The first frontend is on > tcp mode

Re: Early connection close, incomplete transfers

2019-02-15 Thread Aleksandar Lazic
Am 15.02.2019 um 08:47 schrieb Veiko Kukk: > On 2019-02-14 18:29, Aleksandar Lazic wrote: >>> Replaced HAproxy with Nginx for testing and with Nginx, not a single >>> connection >>> was interrupted, did millions of requests. >> >> In 1.9.4 are a lot

Re: Early connection close, incomplete transfers

2019-02-14 Thread Aleksandar Lazic
Am 14.02.2019 um 15:31 schrieb Veiko Kukk: > > On 2019-02-01 13:30, Veiko Kukk wrote: >> On 2019-02-01 12:34, Aleksandar Lazic wrote: >> >>> Do you have any errors in lighthttpds log? >> >> Yes, it has error messages about not being enable to write to so

Re: Compilation fails on OS-X

2019-02-14 Thread Aleksandar Lazic
Looks like apples llvm is not based on master branch. https://news.ycombinator.com/item?id=16545037 Ursprüngliche Nachricht Von: Frederic Lecaille Gesendet: 14. Februar 2019 16:13:01 MEZ An: Patrick Hemmer CC: Olivier Houchard , Aleksandar Lazic , haproxy@formilux.org

Re: [RFC PATCH] MEDIUM: compression: Add support for brotli compression

2019-02-14 Thread Aleksandar Lazic
Hi Tim. Am 13.02.2019 um 17:57 schrieb Tim Duesterhus: > Willy, > Aleks, > List, > > this (absolutely non-ready-to-merge) patch adds support for brotli > compression as suggested in issue #21: > https://github.com/haproxy/haproxy/issues/21 Cool ;-) > It is tested on Ubuntu Xenial with

Re: Compilation fails on OS-X

2019-02-13 Thread Aleksandar Lazic
Am 13.02.2019 um 14:45 schrieb Patrick Hemmer: > Trying to compile haproxy on my local machine for testing purposes and am > running into the following: Which compiler do you use? >         # make TARGET=osx >     src/proto_http.c:293:1: error: argument to 'section' attribute is not > valid

Re: HAProxy in front of Docker Enterprise problem

2019-02-13 Thread Aleksandar Lazic
Hi. Am 13.02.2019 um 00:21 schrieb Norman Branitsky: > I have an HAProxy 1.7 server sitting in front of a number of Docker Enterprise > Manager nodes and Worker nodes. > > The Worker nodes don’t appear to have any problem with HAProxy terminating the > SSL and connecting to them via HTTP. > >

Re: haproxy segfault

2019-02-12 Thread Aleksandar Lazic
Hi. Am 12.02.2019 um 18:36 schrieb Mildis: > Hi list, > > haproxy is segfaulting multiple times these days for no apparent reason. > At first i thought is was a load issue but even few RPS made it crash. > > Symptoms are always the same : segfault of a worker then spawn of a new. > If load is

Re: Anyone heard about DPDK?

2019-02-12 Thread Aleksandar Lazic
Hi all. Wow so much feedback, thanks all for the answers ;-) Am 12.02.2019 um 15:23 schrieb Alexandre Cassen: > There has been a lot of applications/stack built around DPDK last few years. > Mostly because people found it easy to code stuff around DPDK and are so happy > to display perf graph

Re: [PATCH] CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy

2019-02-11 Thread Aleksandar Lazic
Am 11.02.2019 um 10:40 schrieb Christopher Faulet: > Le 09/02/2019 à 10:47, Aleksandar Lazic a écrit : >> Hi Christopher. >> >> Am 07-02-2019 22:09, schrieb Christopher Faulet: >>> Hi, >>> >>> This patch adds a new component in contrib. It is a P

Re: Anyone heard about DPDK?

2019-02-10 Thread Aleksandar Lazic
Am 10.02.2019 um 12:06 schrieb Lukas Tribus: > On Sun, 10 Feb 2019 at 10:48, Aleksandar Lazic wrote: >> >> Hi. >> >> I have seen this in some twitter posts and asked me if it's something >> useable for a Loadbalancer like HAProxy ? >> >> https://w

Anyone heard about DPDK?

2019-02-10 Thread Aleksandar Lazic
Hi. I have seen this in some twitter posts and asked me if it's something useable for a Loadbalancer like HAProxy ? https://www.dpdk.org/ To be honest it looks like a virtual NIC, but I'm not sure. Regards Aleks

Re: [PATCH] CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy

2019-02-09 Thread Aleksandar Lazic
Hi Christopher. Am 07-02-2019 22:09, schrieb Christopher Faulet: Hi, This patch adds a new component in contrib. It is a Prometheus exporter for HAProxy. [snipp] More details in the README. I'm not especially a Prometheus expert. And I must admit I never use it. So if anyone have comments

Re: [ANNOUNCE] haproxy-1.9.4

2019-02-07 Thread Aleksandar Lazic
Am 06.02.2019 um 17:19 schrieb Willy Tarreau: > Hi Aleks, > > On Wed, Feb 06, 2019 at 05:16:58PM +0100, Aleksandar Lazic wrote: >> Maybe this patch was to late for 1.9.4 please can you consider to add it >> to 2.0 and later 1.9.5, thanks. >> >> https://www.mail

Re: Weighted Backend's

2019-02-06 Thread Aleksandar Lazic
Hi James. Am 06.02.2019 um 16:16 schrieb James Root: > Hi All, > > I am doing some research and have not really found a great way to configure > HAProxy to get the desired results. The problem I face is that I a service > backed by two separate collections of servers. I would like to split

Re: [ANNOUNCE] haproxy-1.9.4

2019-02-06 Thread Aleksandar Lazic
Hi willy. Am 06.02.2019 um 15:25 schrieb Willy Tarreau: > Hi, > > HAProxy 1.9.4 was released on 2019/02/06. It added 65 new commits > after version 1.9.3. Images are updated. https://hub.docker.com/r/me2digital/haproxy-19-boringssl https://hub.docker.com/r/me2digital/haproxy19 Maybe this

Re: info defaults maxconn

2019-02-06 Thread Aleksandar Lazic
Hi Federico. Am 06.02.2019 um 15:33 schrieb Federico Iezzi: > Hey there, > > Maybe this is gonna be a very simple answer. > In HAProxy 1.5.18 seems that the defaults maxconn have a global influence and > not per backend one. > > In my case I have global maxconn at 5120001, while defaults at

Re: Opinions about DoH (=DNS over HTTPS) as resolver for HAProxy

2019-02-04 Thread Aleksandar Lazic
Hi Lukas. Am 04.02.2019 um 21:39 schrieb Lukas Tribus: > Hello, > > On Mon, 4 Feb 2019 at 12:14, Aleksandar Lazic wrote: >> >> Hi. >> >> I have just opened a new Issue about DoH for resolving. >> >> https://github.com/haproxy/haproxy/issues/3

Opinions about DoH (=DNS over HTTPS) as resolver for HAProxy

2019-02-04 Thread Aleksandar Lazic
Hi. I have just opened a new Issue about DoH for resolving. https://github.com/haproxy/haproxy/issues/33 As I know that this is a major change in the Infrastructure I would like to here what you think about this suggestion. My opinion was at the beginning against this change as there was only

Re: [PATCH] DOC: Add HTX part in the documentation

2019-02-02 Thread Aleksandar Lazic
Sorry have forgotten to add. Need to backport to 1.9 Regards Aleks Ursprüngliche Nachricht Von: Aleksandar Lazic Gesendet: 2. Februar 2019 10:01:26 MEZ An: haproxy@formilux.org Betreff: [PATCH] DOC: Add HTX part in the documentation Hi. attached a doc update for the new

[PATCH] DOC: Add HTX part in the documentation

2019-02-02 Thread Aleksandar Lazic
Hi. attached a doc update for the new features of HAProxy 1.9. I hope the patch full fills the CONTRIBUTING rules as I haven't send patched to the list for long time ;-) Regards AleksFrom c0e025e81b87a23f679aff80bddc02a96c4d43b0 Mon Sep 17 00:00:00 2001 From: Aleksandar Lazic Date: Sat, 2 Feb

Re: Early connection close, incomplete transfers

2019-02-01 Thread Aleksandar Lazic
Hi. Do you have any errors in lighthttpds log? Regards Aleks Ursprüngliche Nachricht Von: Veiko Kukk Gesendet: 1. Februar 2019 12:33:39 MEZ An: Aleksandar Lazic CC: haproxy@formilux.org Betreff: Re: Early connection close, incomplete transfers On 2019-01-31 12:57

Re: RTMP and Seamless Reload

2019-01-31 Thread Aleksandar Lazic
mation. If you are not the named > addressee or have received this e-mail in error, please notify the sender > immediately. The unauthorised disclosure, use or reproduction of this email's > content is prohibited. Unless expressly agreed, no reliance on this email may > be made.  >

Re: Early connection close, incomplete transfers

2019-01-31 Thread Aleksandar Lazic
Hi. Am 31.01.2019 um 10:29 schrieb Veiko Kukk: > HAproxy 1.9.3, but happens also with 1.7.10, 1.7.11. > > Connections are getting closed during data transfer phase at random sizes on > backend. Sometimes just as little as 420 bytes get transferred, but usually > more is transferred before

Re: RTMP and Seamless Reload

2019-01-30 Thread Aleksandar Lazic
Hi. Am 30.01.2019 um 13:08 schrieb Erlangga Pradipta Suryanto: > Hi, > > I'm trying to use haproxy to proxy rtmp stream to an nginx rtmp backend. > what we want to achieve is, we will add more nginx rtmp servers on the > backend, and when we do we want to reload the haproxy config without

Re: HTTP connection is reset after each request

2019-01-30 Thread Aleksandar Lazic
adia Maps | Founder > stadiamaps.com > > ‐‐‐ Original Message ‐‐‐ > On Wednesday, January 30, 2019 12:02 PM, Aleksandar Lazic > wrote: > >> Hi. >> > >> Am 30.01.2019 um 11:53 schrieb Marco Corte: >> > >>> Il 2019-01-30 11:40 Luke S

Re: HTTP connection is reset after each request

2019-01-30 Thread Aleksandar Lazic
Hi. Am 30.01.2019 um 11:53 schrieb Marco Corte: > Il 2019-01-30 11:40 Luke Seelenbinder ha scritto: > > >> Are you on 1.9.x? 1.8.x does not support reuse of backend connections >> when using an h2 frontend. 1.9.x does support this and it works quite >> nicely. > > Yes! I am on version 1.8.17.

Cache question

2019-01-29 Thread Aleksandar Lazic
Hi. I plan to use HAProxy 1.9.x cache with ~50-100k Objects which will could use 1-2G RAM. Have anyone used the cache features in prod with such specs? The Idea is to use HAProxy in AUS for a Webserver in FR for caching as the latency delays the delivery from FR to AUS Clients. Thank you for

Re: [ANNOUNCE] haproxy-1.9.3

2019-01-29 Thread Aleksandar Lazic
Am 29.01.2019 um 06:52 schrieb Willy Tarreau: > Hi, > > HAProxy 1.9.3 was released on 2019/01/29. It added 35 new commits after > version 1.9.2. > > It mainly addresses a few stability issues affecting versions up to 1.9.2. > Several of these issues are only reproducible when using H2 to connect

Re: V1.9 SSL engine and ssl-mode-async is unstable

2019-01-25 Thread Aleksandar Lazic
Hi. Am 25-01-2019 08:55, schrieb Kevin Zhu: HI HAProxy Team,: I am trying to use Intel qat work with HAProxy-1.9.0, but it work very unstable. and i had other try HAProxy-1.8.16 and it work will, How can i find what is wrong? 1.8.16 and 1.9.0 use same hardwave and system to running and

Re: h1-client to h2-server host header / authority conversion failure.?

2019-01-25 Thread Aleksandar Lazic
Hi List. Am 25-01-2019 01:01, schrieb PiBa-NL: Hi List, Attached a regtest which i 'think' should pass. **   s1    0.0 === expect tbl.dec[1].key == ":authority" s1    0.0 EXPECT tbl.dec[1].key (host) == ":authority" failed It seems to me the Host <> Authority conversion isn't happening

Re: haproxy 1.9.2 with boringssl

2019-01-24 Thread Aleksandar Lazic
Am 24.01.2019 um 15:09 schrieb Aleksandar Lazic: > Am 24.01.2019 um 03:49 schrieb Willy Tarreau: >> On Wed, Jan 23, 2019 at 09:37:46PM +0100, Aleksandar Lazic wrote: >>> >>> Am 23.01.2019 um 21:27 schrieb Willy Tarreau: >>>> On Wed, Jan 23, 2019 at 0

Re: haproxy 1.9.2 with boringssl

2019-01-24 Thread Aleksandar Lazic
Am 24.01.2019 um 03:49 schrieb Willy Tarreau: > On Wed, Jan 23, 2019 at 09:37:46PM +0100, Aleksandar Lazic wrote: >> >> Am 23.01.2019 um 21:27 schrieb Willy Tarreau: >>> On Wed, Jan 23, 2019 at 09:08:00PM +0100, Aleksandar Lazic wrote: >>>> Should it be possible

Re: haproxy 1.9.2 with boringssl

2019-01-23 Thread Aleksandar Lazic
Am 23.01.2019 um 21:27 schrieb Willy Tarreau: > On Wed, Jan 23, 2019 at 09:08:00PM +0100, Aleksandar Lazic wrote: >> Should it be possible to have fe with h1 and be server h2(alpn h2), as I >> expect this or similar return value when I go thru haproxy? > > Yes absolutely.

Re: haproxy 1.9.2 with boringssl

2019-01-23 Thread Aleksandar Lazic
Hi Willy. Am 23.01.2019 um 19:50 schrieb Willy Tarreau: > Hi Aleks, > > On Wed, Jan 23, 2019 at 06:58:25PM +0100, Aleksandar Lazic wrote: >> backend be_generic_tcp >> mode http >> balance source >> timeout check 5s >> option tcp-check >> &g

Re: haproxy 1.9.2 with boringssl

2019-01-23 Thread Aleksandar Lazic
50:50.727] public_tcp public_tcp/ -1/-1/-1/-1/0 0 0 - - PR-- 1/1/0/0/0 0/0 "" <30>1 2019-01-23T17:50:50+00:00 doh-001 haproxy 1 - - 127.0.0.1:54178 [23/Jan/2019:17:50:50.715] public_tcp be_generic_tcp/google-mail 0/0/13/-1/13 502 208 - - SH-- 1/1/0/0/0 0/0 "GET / HTTP/1.1" #### I t

Re: H2 Server Connection Resets (1.9.2)

2019-01-23 Thread Aleksandar Lazic
Hi Lukas. Am 23.01.2019 um 10:24 schrieb Luke Seelenbinder: > Hi Willy, > > Thanks for continuing to look into this. > >> > >> I've place an nginx instance after my local haproxy dev config, and >> found something which might explain what you're observing : the process >> apparently leaks FDs

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Am 22.01.2019 um 21:45 schrieb Adam Langley: > On Tue, Jan 22, 2019 at 12:13 PM Aleksandar Lazic wrote: >> Sorry for my dump question, I just want to be save not to break something. >> >> It would be nice to have the option '-key-update' in client.cc and server.cc >> w

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Tim. Am 22.01.2019 um 20:57 schrieb Tim Düsterhus: > Aleks, > > Am 22.01.19 um 20:50 schrieb Aleksandar Lazic: >> This means that the function in haproxy works but the check should be >> adopted to >> match both cases, right? > > At least one should investiga

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Am 22.01.2019 um 20:54 schrieb Adam Langley: > On Tue, Jan 22, 2019 at 11:45 AM Aleksandar Lazic wrote: >> Can it be reused to test a specific server like? >> >> ssl/test/runner/runner -test "KeyUpdate-ToServer" 127.0.0.1:8443 > > Not easily: it drives the

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Tim. Am 22.01.2019 um 20:26 schrieb Tim Düsterhus: > Aleks, > > Am 22.01.19 um 19:38 schrieb Aleksandar Lazic: >> ## test results in: >> "/tmp/haregtests-2019-01-22_18-28-24.aBghMD/vtc.3398.76167f9e" >> s10.0 EXPECT req.http.test3maskff (2001:db8:

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Am 22.01.2019 um 20:30 schrieb Adam Langley: > On Tue, Jan 22, 2019 at 11:16 AM Aleksandar Lazic wrote: >> Agree that I get a 400 with this command. >> >> `echo 'K' | ./tool/bssl s_client -connect mail.google.com:443` > > (Note that "K" on its own l

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Am 22.01.2019 um 20:04 schrieb Adam Langley: > On Tue, Jan 22, 2019 at 10:54 AM Aleksandar Lazic wrote: >> Do have boringssl a similar tool like s_client? > > BoringSSL builds tool/bssl (in the build directory), which is similar. > However it doesn't have any magic input

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Am 22.01.2019 um 19:54 schrieb Aleksandar Lazic: > Cool, thanks. > > Do have boringssl a similar tool like s_client? > > I don't like to build openssl just for s_client call :-) Answer my own question. bssl is the boringssl tool command. The open question is why the tests fai

Re: haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Cool, thanks. Do have boringssl a similar tool like s_client? I don't like to build openssl just for s_client call :-) Regards Aleks Ursprüngliche Nachricht Von: Janusz Dziemidowicz Gesendet: 22. Jänner 2019 19:49:15 MEZ An: Aleksandar Lazic CC: HAProxy Betreff: Re

haproxy 1.9.2 with boringssl

2019-01-22 Thread Aleksandar Lazic
Hi. I have now build haproxy with boringssl and it looks quite good. Is it the recommended way to simply make a git clone without any branch or tag? Does anyone know how the KeyUpdate can be tested? ### HA-Proxy version 1.9.2 2019/01/16 - https://haproxy.org/ Build options : TARGET =

Re: Automatic Redirect transformations using regex?

2019-01-22 Thread Aleksandar Lazic
Am 21.01.2019 um 23:40 schrieb Joao Guimaraes: > Hi Haproxy team! > > I've been trying to figure out how to perform automatic redirects based on > source URL transformations.  > > *Basically I need the following redirect: * > > mysite.*abc* redirected to *abc*.mysite.com . Maybe you can

Re: H2 Server Connection Resets (1.9.2)

2019-01-21 Thread Aleksandar Lazic
Hi Luke. Am 21.01.2019 um 10:30 schrieb Luke Seelenbinder: > Hi all, > > One more bug (or configuration hole) from our transition to 1.9.x using > end-to-end h2 connections. > > After enabling h2 backends (technically `server … alpn h2,http/1.1`), we > began seeing a high number of backend

Re: HAProxy with OpenSSL 1.1.1 breaks when TLS 1.3 KeyUpdate is used.

2019-01-20 Thread Aleksandar Lazic
Thank you for clarification. Regard Aleks Ursprüngliche Nachricht Von: Adam Langley Gesendet: 21. Jänner 2019 00:12:59 MEZ An: Aleksandar Lazic CC: haproxy@formilux.org, Willy Tarreau , eb...@haproxy.com Betreff: Re: HAProxy with OpenSSL 1.1.1 breaks when TLS 1.3 KeyUpdate

Re: HAProxy with OpenSSL 1.1.1 breaks when TLS 1.3 KeyUpdate is used.

2019-01-20 Thread Aleksandar Lazic
Hi. As far as I understood the keyupdate https://tools.ietf.org/html/rfc8446 4.6.3 which you refer proper isn't it also a option to use https://wiki.openssl.org/index.php/TLS1.3#Renegotiation which refers to https://www.openssl.org/docs/manmaster/man3/SSL_key_update.html instead of the

Re: haproxy issue tracker discussion

2019-01-18 Thread Aleksandar Lazic
Cool, thanks :-) Ursprüngliche Nachricht Von: Lukas Tribus Gesendet: 18. Jänner 2019 14:14:06 MEZ An: Aleksandar Lazic CC: haproxy , Willy Tarreau , "Tim Düsterhus" Betreff: Re: haproxy issue tracker discussion Hello Aleksandar, On Fri, 18 Jan 2019 at 12:54,

Re: haproxy issue tracker discussion

2019-01-18 Thread Aleksandar Lazic
Hi. As there are now the github templates in the repo can / should we start to create issues & features on github? Regards Aleks Ursprüngliche Nachricht Von: Willy Tarreau Gesendet: 14. Jänner 2019 04:11:17 MEZ An: "Tim Düsterhus" CC: Lukas Tribus , haproxy Betreff: Re:

Re: [ANNOUNCE] haproxy-1.9.2

2019-01-18 Thread Aleksandar Lazic
Hi Willy, Am 17-01-2019 15:41, schrieb Willy Tarreau: Hi Aleks, On Thu, Jan 17, 2019 at 01:02:56PM +0100, Aleksandar Lazic wrote: > Very likely, yes. If you want to inspect the body you simply have to > enable "option http-buffer-request" so that haproxy waits for the body &g

Re: [ANNOUNCE] haproxy-1.9.2

2019-01-17 Thread Aleksandar Lazic
Hi Willy. Am 17.01.2019 um 04:25 schrieb Willy Tarreau: > Hi Aleks, > > On Wed, Jan 16, 2019 at 11:52:12PM +0100, Aleksandar Lazic wrote: >> For service routing are the standard haproxy content routing options possible >> (path, header, ...) , right? > > Yes absolu

Re: [ANNOUNCE] haproxy-1.9.2

2019-01-16 Thread Aleksandar Lazic
Hi. Am 16.01.2019 um 19:02 schrieb Willy Tarreau: > Hi, > > HAProxy 1.9.2 was released on 2019/01/16. It added 58 new commits > after version 1.9.1. > > It addresses a number of lower importance pending issues that were not > yet merged into 1.9.1, one bug in the cache and fixes some

Re: How to replicate RedirectMatch (apache reverse proxy) in Haproxy

2019-01-16 Thread Aleksandar Lazic
Hi. Am 16.01.2019 um 16:35 schrieb mirko stefanelli: > Hi to all, > > we are trying to move from Apache reverse proxy to Haproxy, you can see below > a > part of del file Apache httpd.conf: > > >  ServerName dipendenti.xxx.xxx.it >  ErrorLog logs/intranet_ssl_error_log >  TransferLog

Re: Get client IP

2019-01-16 Thread Aleksandar Lazic
gt; From: Vũ Xuân Học > Sent: Wednesday, January 16, 2019 10:37 AM > To: 'Aleksandar Lazic' ; 'haproxy@formilux.org' > ; 'PiBa-NL' > Subject: RE: Get client IP > > Hi, > > I have other problem. I want to only allow some ip access my website. Please > show me how to al

Re: Get client IP

2019-01-14 Thread Aleksandar Lazic
haproxy-config.template#L180 https://github.com/openshift/router/blob/master/images/router/haproxy/conf/haproxy-config.template#L198 Regards Aleks > *From:* Aleksandar Lazic > *Sent:* Monday, January 14, 2019 8:45 AM > *To:* haproxy@formilux.org; Vũ Xuân Học ; 'PiBa-NL' > > *Subjec

RE: Get client IP

2019-01-13 Thread Aleksandar Lazic
the client ip as the setup works in the http config. Best regards Aleks Ursprüngliche Nachricht Von: "Vũ Xuân Học" Gesendet: 14. Jänner 2019 02:17:23 MEZ An: 'PiBa-NL' , 'Aleksandar Lazic' , haproxy@formilux.org Betreff: RE: Get client IP Thanks for your help I

Re: Get client IP

2019-01-13 Thread Aleksandar Lazic
Hi. Am 13.01.2019 um 12:17 schrieb Vũ Xuân Học: > Hi, > > Please help me to solve this problem. > > I use HAProxy version 1.5.18, SSL transparent mode and I can not get client IP > in my .net mvc website. With mode http, I can use option forwardfor to catch > client ip but with tcp mode, my web

Re: haproxy issue tracker discussion

2019-01-10 Thread Aleksandar Lazic
Am 09.01.2019 um 15:22 schrieb Willy Tarreau: > Hi Tim, > > On Wed, Jan 09, 2019 at 12:58:30PM +0100, Tim Düsterhus wrote: >> Am 09.01.19 um 05:31 schrieb Willy Tarreau: >>> Except that the "naturally" part here is manually performed by someone, >>> and an issue tracker is nothing more than an

Re: Question about Maglev algorithm

2018-12-29 Thread Aleksandar Lazic
Am 29.12.2018 um 19:25 schrieb Valentin Vidic: > On Sat, Dec 29, 2018 at 06:03:51PM +0100, Aleksandar Lazic wrote: >> I thought I have misunderstood the Idea behind maglev, thanks for >> clarification. > > Found another mention of Maglev [Eis16] for high-level lo

Re: Question about Maglev algorithm

2018-12-29 Thread Aleksandar Lazic
Am 29.12.2018 um 07:41 schrieb Willy Tarreau: > On Fri, Dec 28, 2018 at 07:55:11PM +0100, Aleksandar Lazic wrote: >> Well as far as I understood the pdf one of the biggest difference is that >> Maglev is a distributed system where the consistent hash is for local system. >

Re: Question about Maglev algorithm

2018-12-28 Thread Aleksandar Lazic
Well as far as I understood the pdf one of the biggest difference is that Maglev is a distributed system where the consistent hash is for local system. What I think is if consistent hash uses the peers table for balancing it could be similar to Maglev, but I'm not a algo expert, just an Idea.

Question about Maglev algorithm

2018-12-28 Thread Aleksandar Lazic
Hi. Have anyone take a look into the Maglev algorithm ? This paper looks very interesting https://static.googleusercontent.com/media/research.google.com/en//pubs/archive/44824.pdf Regards Aleks

Tweet about Facebook's implementation and deployment of QUIC

2018-12-28 Thread Aleksandar Lazic
Hi. I just have seen this tweet, maybe it's also interesting for you. Subodh Iyengar (@__subodh) twitterte um 10:18 nachm. on Mi., Dez. 26, 2018: Slides for my presentation at ACM conext on Facebook's implementation and deployment of QUIC are now live

RE: Http HealthCheck Issue

2018-12-27 Thread Aleksandar Lazic
Nachricht Von: "UPPALAPATI, PRAVEEN" Gesendet: 27. Dezember 2018 06:24:43 MEZ An: Aleksandar Lazic , haproxy Betreff: RE: Http HealthCheck Issue Hi Alex, If I have one vhost representing all the nexus host's how can haproxy identify which server is down ? I guess he

Re: haproxy AIX 7.1.0.0 compile issues

2018-12-26 Thread Aleksandar Lazic
Hi Patrick. Am 26-12-2018 22:26, schrieb Overbey, Patrick (Sioux Falls): Hello, First off, I want to say thank you for your hard work on haproxy. It is a very fine piece of software. I recently ran into a bug compiling haproxy 1.9+ on AIX 7.1 7100-00-03-1115 using gmake 4.2 and gcc 8.1.0. I

Re: HA Proxy Load Balancer

2018-12-21 Thread Aleksandar Lazic
/blog/the-four-essential-sections-of-an-haproxy-configuration/ https://www.haproxy.com/blog/introduction-to-haproxy-acls/ In any case please post some logs, configs or anything directly in the mail body so that the persons which reads this list via a console are able to follow it without to open a word d

Re: HA Proxy Load Balancer

2018-12-20 Thread Aleksandar Lazic
-vv anonymized config Regards Aleks -Original Message- From: Aleksandar Lazic Sent: Thursday, December 20, 2018 2:00 PM To: Lance Melancon Cc: haproxy@formilux.org Subject: Re: HA Proxy Load Balancer CAUTION: This email originated from outside Cypress-Fairbanks ISD. Do not click

Re: [ANNOUNCE] haproxy-1.9.0

2018-12-20 Thread Aleksandar Lazic
Hi Willy. Am 20-12-2018 10:29, schrieb Willy Tarreau: On Thu, Dec 20, 2018 at 09:17:00AM +0100, Aleksandar Lazic wrote: Runtime API Improvements: It would be nice when you add a block that hanging or dead processes can also be debugged with this API now. Maybe I have overseen

Re: HA Proxy Load Balancer

2018-12-20 Thread Aleksandar Lazic
Hi Lance. Am 20-12-2018 18:20, schrieb Lance Melancon: We are testing the load balancer and it's working but I can't see how to direct the server to a specific website such as server.net/site. Is this possible? Syntax? Thanks! Well yes. I think it is a good starting point to read and

Re: Http HealthCheck Issue

2018-12-20 Thread Aleksandar Lazic
version, as it's normally not a big deal to setup a vhost. Regards Aleks PS: What's this urldefense.proofpoint.com crap 8-O > Please advice. > > Thanks, > Praveen. > > > > -Original Message- > From: Aleksandar Lazic [mailto:al-hapr...@none.at] > Sent: Wednesday, December 19, 2018 3

Re: [ANNOUNCE] haproxy-1.9.0

2018-12-20 Thread Aleksandar Lazic
Am 20.12.2018 um 06:48 schrieb Willy Tarreau: > On Wed, Dec 19, 2018 at 11:31:33PM +0100, Aleksandar Lazic wrote: >>> Well, I know that so quick a summary doesn't do justice to the developers >>> having done all this amazing work, but I've seen that some of my coworkers >

Re: [ANNOUNCE] haproxy-1.9.0

2018-12-19 Thread Aleksandar Lazic
Hi. Am 19.12.2018 um 19:33 schrieb Willy Tarreau: > Hi, > > HAProxy 1.9.0 was released on 2018/12/19. It added 45 new commits > after version 1.9-dev11. > > We still had a number of small issues causing the various artefacts that > have been visible on haproxy.org since this week-end, but now

Re: Http HealthCheck Issue

2018-12-19 Thread Aleksandar Lazic
Am 19.12.2018 um 21:04 schrieb UPPALAPATI, PRAVEEN: > Ok then do I need to add the haproxy server? I suggest to use a `curl -v /nexus/v1/repository/rawcentral/com.att.swm.attpublic/healthcheck.txt` and see how curl make the request. I assume that nexus have a general URL and not srv1,srv2, ...

Re: MQTT CONNECT parsing in Lua

2018-12-11 Thread Aleksandar Lazic
Hi Baptiste. Am 11.12.2018 um 03:29 schrieb Baptiste: > Hi guys, > > At last AWS conference, I met with a engineer who was using HAProxy to > load-balance IoT devices through HAProxy using MQTT protocol and he was > complaining about the poor performance of the server with 10k of devices just >

Re: sample fetch: add bc_http_major

2018-12-07 Thread Aleksandar Lazic
Hi Jerome. Am 07.12.2018 um 15:37 schrieb Jerome Magnin: > Hi Aleks, > > On Fri, Dec 07, 2018 at 01:46:53PM +0100, Aleksandar Lazic wrote: >> Hi Jerome. >> [...] >> I suggest to use a dedicated function for that, jm2c. >> >> { "bc_http_major&qu

Re: Simply adding a filter causes read error

2018-12-07 Thread Aleksandar Lazic
Requests/sec: 229817.63 > Transfer/sec:    186.30MB > > thanks > > - Original Message - > *From:* "flamese...@yahoo.co.jp" > *To:* Aleksandar Lazic ; "haproxy@formilux.org" > > *Date:* 2018/12/7, Fri 09:06 > *Subject:* R

Re: sample fetch: add bc_http_major

2018-12-07 Thread Aleksandar Lazic
Hi Jerome. Am 07.12.2018 um 10:26 schrieb Jerome Magnin: > Hi, > > the attached patch adds bc_http_major. It returns the HTTP major encoding of > the > backend connection, based on the the on-wire encoding. cool Idea ;-) I suggest to use a dedicated function for that, jm2c. {

Re: Simply adding a filter causes read error

2018-12-06 Thread Aleksandar Lazic
Hi. Am 06.12.2018 um 15:20 schrieb flamese...@yahoo.co.jp: > Hi, > > I have a haproxy(v1.8.14) in front of several nginx backends, everything works > fine until I add compression in haproxy. There is a similar thread about this topic.

Re: [ANNOUNCE] haproxy-1.9-dev9 : the last mile

2018-12-03 Thread Aleksandar Lazic
Am 02.12.2018 um 20:29 schrieb Willy Tarreau: > Hi, > > HAProxy 1.9-dev9 was released on 2018/12/02. It added 147 new commits > after version 1.9-dev8. Image is now updated ;-) https://hub.docker.com/r/me2digital/haproxy19/ ### HA-Proxy version 1.9-dev9 2018/12/02 Copyright 2000-2018 Willy

Re: Generic backend in HAProxy config with server options as placeholders

2018-11-14 Thread Aleksandar Lazic
ub.io/haproxy-dconv/1.8/configuration.html#4-server-template So you would like to have something like this, is this possible, I don't think so? backend generic server-template myserver 1-3 %[req.hdr(X-MyHeader)]:80 check source 0.0.0.0 usesrc %[dst] Which version of HAProxy do you use? haproxy -vv > Thank

Re: Generic backend in HAProxy config with server options as placeholders

2018-11-14 Thread Aleksandar Lazic
Hi. Am 14.11.2018 um 08:46 schrieb Vijay Bais: > Hello, > > We have a requirement wherein a single generic backend with server options > configured as placeholders, which will resolve on the fly or at runtime. > > Currently, we have to define multiple backends (has to be hardcoded) and >

Re: [PATCH] HTTP 103 response (Early Hints)

2018-11-12 Thread Aleksandar Lazic
Hi Fred. Sorry to be picky but I still think that there is some missing text in the documentation, as mentioned before. http://git.haproxy.org/?p=haproxy.git;a=commitdiff;h=06f5b6435ba99b7a6a034d27b56192e16249f6f0 MINOR: doc: Add information about "early-hint" http-request action. As I could

Re: HTTP/3 | daniel.haxx.se

2018-11-12 Thread Aleksandar Lazic
Am 12.11.2018 um 23:31 schrieb Willy Tarreau: > On Mon, Nov 12, 2018 at 10:52:41PM +0100, Aleksandar Lazic wrote: >> Oh wow this is really a good time to get the hands dirty as QUIC is a major >> design change in HTTP, IMHO. > > Some first approaches were already attempt

Re: HTTP/3 | daniel.haxx.se

2018-11-12 Thread Aleksandar Lazic
Hi Willy. Am 12.11.2018 um 21:01 schrieb Willy Tarreau: > On Mon, Nov 12, 2018 at 07:42:21PM +0100, Aleksandar Lazic wrote: >> Even I agree with you to the point that HAProxy should be able to handle this >> next upcomming/available technology, I'm not sure if it's really a be

Re: [PATCH] HTTP 103 response (Early Hints)

2018-11-12 Thread Aleksandar Lazic
Hi Willy. Am 12.11.2018 um 21:14 schrieb Willy Tarreau: > Hi Aleks, > > On Mon, Nov 12, 2018 at 06:00:25PM +0100, Aleksandar Lazic wrote: >> Hi Fred. >> >> Am 12.11.2018 um 15:38 schrieb Frederic Lecaille: >>> Hello, >>> >>> Here is a li

Re: HTTP/3 | daniel.haxx.se

2018-11-12 Thread Aleksandar Lazic
it further off the list, if you like. Regads aleks Ursprüngliche Nachricht Von: Emmanuel Hocdet Gesendet: 12. November 2018 18:44:40 MEZ An: Aleksandar Lazic CC: haproxy@formilux.org Betreff: Re: HTTP/3 | daniel.haxx.se Hi Aleks, > Le 12 nov. 2018 à 18:02, Aleksandar La

Re: HTTP/3 | daniel.haxx.se

2018-11-12 Thread Aleksandar Lazic
proxy will be able to proxy/load balance UDP? > ++ > Manu > >> Le 11 nov. 2018 à 20:38, Aleksandar Lazic a écrit : >> >> Hi. >> >> FYI. >> >> Oh no, that was quite fast after HTTP/2 >> >> https://daniel.haxx.se/blog/2018/11/11/http-3/ >> >> Regards >> Aleks >> > >

Re: [PATCH] HTTP 103 response (Early Hints)

2018-11-12 Thread Aleksandar Lazic
Hi Fred. Am 12.11.2018 um 15:38 schrieb Frederic Lecaille: > Hello, > > Here is a little series of patches to implement a new http-request > action named "early-hint" to add HTTP 103 responses prior to any other > response with headers whose values are defined by log-format rules, as > this is

HTTP/3 | daniel.haxx.se

2018-11-11 Thread Aleksandar Lazic
Hi. FYI. Oh no, that was quite fast after HTTP/2 https://daniel.haxx.se/blog/2018/11/11/http-3/ Regards Aleks

Re: Issue with HAProxy as a forward proxy

2018-11-06 Thread Aleksandar Lazic
Hi Vijay. Am 06.11.2018 um 10:06 schrieb Vijay Bais: > Hello, > > I'm using HAProxy 1.8 as a forward proxy with below configuration > > > > defaults >     mode                    tcp >     log                     global >     option                  tcplog >     option     

  1   2   3   4   5   6   >