Re: Get http connection client/server ip/port

Hello, as confirmed in the github issue and for the record here as well (so that we have the solution in the archives): This is not a haproxy bug, but turned out to be a kernel/conntrack thing. Disabling nf_conntrack_tcp_loose fixes this: https://www.spinics.net/lists/netdev/msg546371.html

Re: Get http connection client/server ip/port

just to be sure I have tried another kernel, with the same result 0 : CentOS Linux (5.1.16-1.el7.elrepo.x86_64) 7 (Core) 1 : CentOS Linux (4.4.184-1.el7.elrepo.x86_64) 7 (Core) 2 : CentOS Linux (3.10.0-957.21.3.el7.x86_64) 7 (Core) > On 5 Jul 2019, at 23:23, Peter Hudec wrote: > > There was

Re: Get http connection client/server ip/port

There was no IPv6.. If I change BIND from bind :80 bind :443 ssl crt /home/certs/haproxy/combined/ to bind :::80 v4v6 bind :::443 v4v6 ssl crt /home/certs/haproxy/combined/ the IPv4 and IPv6 are working as expected. But in this setup IPv4 is wrongIPv6 is OK bind :::80

Re: Get http connection client/server ip/port

it works on localhost, but not on public ip curl -k -v https://2.57.64.11 curl -k -v http://2.57.64.11 or try IPv6 2a09:d4c0::11 Peter > On 5 Jul 2019, at 23:02, Peter Hudec wrote: > > thos config do not works. > I took your working config anf add mu global sand

Re: Get http connection client/server ip/port

thos config do not works. I took your working config anf add mu global sand default section global log 127.0.0.1 local2 chroot /var/lib/haproxy pidfile /var/run/haproxy.pid maxconn 4000 userhaproxy group haproxy daemon # turn on

Re: Get http connection client/server ip/port

There’s not problem with nginx/php. If I add this lines in my config http-response set-header X-Server-IP %[dst] http-response set-header X-Server-Port %[dst_port] http-response set-header X-Client-IP %[src] http-response set-header X-Client-Port %[src_port] see exactly the

Re: Get http connection client/server ip/port

Le 05/07/2019 à 21:55, Peter Hudec a écrit : Hi Jarno, thanks for answer. I tried to run the haproxy in debug mode, but I do not see the request headers for the upstream in the log. But I have found some new facts. Test these 2 scenarios, at this moment there is no valid certs

Re: Get http connection client/server ip/port

Hi, still could be problem on my side, but I have the same result with version 1.8.20 1.9.8 2.0.1 Peter > On 5 Jul 2019, at 21:55, Peter Hudec wrote: > > Hi Jarno, > > thanks for answer. > I tried to run the haproxy in debug mode, but I do not see the request > headers for the

Re: Get http connection client/server ip/port

Hi Jarno, thanks for answer. I tried to run the haproxy in debug mode, but I do not see the request headers for the upstream in the log. But I have found some new facts. Test these 2 scenarios, at this moment there is no valid certs http://web01.test.host.sk/test.php

Re: Get http connection client/server ip/port

Le 04/07/2019 à 15:16, Peter Hudec a écrit : Hi, I have maybe found some bug in haproxy, submitted as https://github.com/haproxy/haproxy/issues/154. The variables dst, dst_port are identical with the src, src_port. Is there any other way how to get these /in this case dst/ values ?? What do

Re: Get http connection client/server ip/port

Hi, On Thu, Jul 04, Peter Hudec wrote: > I have maybe found some bug in haproxy, submitted as > https://github.com/haproxy/haproxy/issues/154. 1.8.4 is fairly old, can you reproduce on more recent 1.8.x or latest 2.0.x ? > The variables dst, dst_port are identical with the src, src_port. > >