Hi Claudio,
Yes, you can trust Vincent's job :)
Baptiste
On Thu, Apr 2, 2015 at 8:47 AM, Claudio Ruggieri
wrote:
> Dear Cyril,
> I updated haproxy to 1.5.11 via ppa. The behaviour is what expected.
> All seams fine now.
>
> Vincent's ppa is maintained? Is safe to use it in production enviromen
Hi all,
My haproxy.cfg is as follows:
-
global
maxconn 4096
daemon
nbproc 3
defaults
mode tcp
timeout connect 5000ms
timeout client 5ms
timeout server 5ms
frontend socks5
bind0.0.0.0:
default_backend soc
On Thu, Apr 2, 2015 at 2:27 PM, Hongyi Zhao wrote:
> Hi all,
>
> My haproxy.cfg is as follows:
>
> -
> global
> maxconn 4096
> daemon
> nbproc 3
> defaults
> mode tcp
> timeout connect 5000ms
> timeout client 5ms
> timeout server 5ms
> fr
Hi.
nice try ;-)
But some parts are not that bad, IMHO.
Am 01-04-2015 10:43, schrieb Willy Tarreau:
Hi,
As some might have noticed, HAProxy development is progressively
slowing
down over time. I have analyzed the situation and came to the following
conclusions :
[snipp]
Recently with th
Hello,
I recently upgraded from HAProxy 1.5.4 to HAProxy 1.5.11, which included an
upgrade from OpenSSL 1.0.1i to 1.0.2a, and my load balancers have since been
crashing 1-2 times a day. I was able to follow the steps outlined here (
http://permalink.gmane.org/gmane.comp.web.haproxy/7992 ) a
> Hello,
>
> I recently upgraded from HAProxy 1.5.4 to HAProxy 1.5.11, which
> included an upgrade from OpenSSL 1.0.1i to 1.0.2a, and my load
> balancers have since been crashing 1-2 times a day.
> [...]
> Any idea whats going on ? I have had to roll back to 1.5.4 in the meantime.
Please prov
Lukas,
Thank you for responding. Here is the output as requested
[root@lb-staging haproxy]# /opt/haproxy/embedded/sbin/haproxy -vv
HA-Proxy version 1.5.11 2015/01/31
Copyright 2000-2015 Willy Tarreau
Build options :
TARGET = linux26
CPU = gen
> Lukas,
>
> Thank you for responding. Here is the output as requested
Clearly on your production box you have openssl1.0.1 and on
your staging box you have openssl1.0.2.
But you cannot compile on your staging box linking against
openssl 1.0.2 and then put that executable on your production
bo
Lukas,
We build all of our RPM’s w/ statically linked libraries, aka FatRPM’s or
Omnibus packages. You can see its using openssl which is bundled w/ the
‘omnibus’
Production ( currently running 1.5.4)
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
haproxy 326
HI,
trying to test LUA on macosx I am getting segmentation fault
1. get
~/repo/haproxy/haproxy (master)$ git pull
Already up-to-date.
2. compile
make CFLAGS="-O0 -g" TARGET=osx USE_LUA=yes LUA_LIB=/opt/lua/lib
LUA_INC=/opt/lua/include LUA_LIB_NAME=lua
gcc -Iinclude -Iebtree -Wall -O0
Hi all,
Le 02/04/2015 17:45, Lukas Tribus a écrit :
Hello,
I recently upgraded from HAProxy 1.5.4 to HAProxy 1.5.11, which
included an upgrade from OpenSSL 1.0.1i to 1.0.2a, and my load
balancers have since been crashing 1-2 times a day.
[...]
Any idea whats going on ? I have had to roll back t
Hey folks,
I'm setting up HAProxy and keepalived on 2 nodes today. And I'm able to
start HAProxy on the first node, but not on the 2nd node.
I've tested failover of the VIP for keepalived and it stays up if either
node is running keepalived.
I have the same haproxy config on both nodes. This is
You need to set net.ipv4.ip_nonlocal_bind=1 to allow processes to bind to
an IP address not currently on the host.
-Bryan
On Thu, Apr 2, 2015 at 2:19 PM, Tim Dunphy wrote:
> Hey folks,
>
> I'm setting up HAProxy and keepalived on 2 nodes today. And I'm able to
> start HAProxy on the first nod
> Hey folks,
>
> I'm setting up HAProxy and keepalived on 2 nodes today. And I'm able
> to start HAProxy on the first node, but not on the 2nd node.
If you bind to a virtual IP it will by default only work on if that virtual IP
is currently active on that particular box, which is not what
>> Please provide the output of "haproxy -vv" of the 1.5.11 executable.
>>
>> I guess you have an ABI problem between openssl 1.0.1 and 1.0.2.
>
> I wonder if we are not seeing a case not covered by CVE-2015-0290 :
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0290
And linking haproxy
Le 02/04/2015 23:35, Lukas Tribus a écrit :
Please provide the output of "haproxy -vv" of the 1.5.11 executable.
I guess you have an ABI problem between openssl 1.0.1 and 1.0.2.
I wonder if we are not seeing a case not covered by CVE-2015-0290 :
https://cve.mitre.org/cgi-bin/cvename.cgi?name=C
Hi,
Le 02/04/2015 18:28, gunay arslan a écrit :
HI,
trying to test LUA on macosx I am getting segmentation fault
1. get
~/repo/haproxy/haproxy(master)$ git pull
Already up-to-date.
2. compile
Is it possible that you already compiled the sources before a "git pull" ?
If so, did you make a
On Thu, 02 Apr 2015 15:04:09 +0200, Baptiste wrote:
> Hi Hongyi,
>
> What happens if you brows directly one of the IP address???
These are socks5 proxies servers address, not websites.
What do you mean by saying that 'brows directly one of the IP address'
for my case?
Regards
>
> Baptiste
Willy Tarreau 1wt.eu> writes:
>
> On Fri, Dec 13, 2013 at 03:43:51AM +0800, Igor wrote:
> > In verbose mode, is it possible to print http log to stdout?
>
> No it's not possible. Do you think it could be useful ? If so, I don't
> think it should be too difficult to do, especially considering th
=Mainproducts:swimcap,goggles,=swimsuitsandaccessoriesMynameisIanfromPOQSW=IM,oneofmanufacturersforswimgears.Areyoulookingforswimcap,=gogglesandswimsuitsetc.?
WhyPOQSWIM:100%puresiliconeswi=mcapSmallorder,from100p=csAnypantonecolor,any=logoCompetitiveprice,USD=0.7~USD0.96/pcforblankswimcapFastdel
>
> You need to set net.ipv4.ip_nonlocal_bind=1 to allow processes to bind to
> an IP address not currently on the host.
Hey guys,
Yup! That's what I tried. And that's what worked. I have haproxy running
on both nodes. Thanks for your input!
Tim
On Thu, Apr 2, 2015 at 5:30 PM, Lukas Tribus w
Cyril,
I use a tool called Omnibus by Chef ( https://github.com/chef/omnibus ) which
builds “fat” rpm’s:
Really all it does it bundle all the dependencies for your project in the
package, aka fat package, which helps in our case because the environments we
install in often have restricted c
On Thu, Apr 2, 2015 at 1:28 PM, Douglas Borg
wrote:
> Willy Tarreau 1wt.eu> writes:
>
> >
> > On Fri, Dec 13, 2013 at 03:43:51AM +0800, Igor wrote:
> > > In verbose mode, is it possible to print http log to stdout?
> >
> > No it's not possible. Do you think it could be useful ? If so, I don't
>
HI Cyril
my mistake, I forget to mention that before every build I am cleaning - make
clean
and here is the lldb output too
lldb /usr/local/bin/haproxy-1.6-dev1-601a4d-55
(lldb) target create "/usr/local/bin/haproxy-1.6-dev1-601a4d-55"
Current executable set to '/usr/local/bin/haproxy-1.6-dev
> Here is a brief example below of the commands it would run for OpenSSL
> and then HAProxy.
>
> # open ssl
Probably doesn't matter regarding the crash, but:
Why not build openssl statically instead of shipping all those shared
objects in the rpm/directory? Replacing "shared" with "no-shared"
25 matches
Mail list logo