Re: [Zenloadbalancer-support] Load Balancing https website

Thu, 14 Jun 2012 04:10:24 -0700 

lownoise kol,

    Did you get this working?

regards,

Daniel.


On 6/13/2012 4:18 PM, lownoise kol wrote:

But are you doing https to your backend servers?
Without any certificates errors?

Cheers
On Wed, Jun 13, 2012 at 10:11 PM, Daniel Ribelin <[email protected] <mailto:[email protected]>> wrote: 

    In this situation you would want to set up a virtual interface
    with a unique ip address. Something like eth0:1 x.x.x.40 which
    would be a different ip address bambi interface for the zlb. That
    is how I currently have mine configured and it seems to work fine.
-- Sent from my Android phone with K-9 Mail. Please excuse my brevity. 

    ------------------------------------------------------------------------
    *From:* lownoise kol <[email protected]
    <mailto:[email protected]>>
    *Sent:* Wed Jun 13 15:54:14 EDT 2012
    *To:* [email protected]
    <mailto:[email protected]>
    *Subject:* Re: [Zenloadbalancer-support] Load Balancing https website

    Thanks but that is a https farm with ssl ofloading.
    What i try to reach is client---https --->Zlb---https--->webserver

    With a https farm you get: client---https --->Zlb---http--->webserver
    With a tcp farm you get the right one: client---https
    --->Zlb---https--->webserver
    however the pushed certificate is from the backend server witch is
    a different hostname than the zlb, which leads to the untrusted
    issuer warning



    On Wed, Jun 13, 2012 at 9:44 PM, Lou Feliz <[email protected]
    <mailto:[email protected]>> wrote:

        Hello,

        Link to article on ssl with zen LB

        http://mywordz.blogspot.com/2012/05/zen-load-balancer-ssl.html


        Cheers!

        On Tue, Jun 12, 2012 at 4:48 AM, lownoise kol
        <[email protected] <mailto:[email protected]>> wrote:

            Hi,

            I'm just evaluating  zen loadbalancer and i think it's a
            great product.
            I've just one question.
            I want to load balance 2 https websites, So i've created a
            farm with a tcp profile and with the 2 backend servers
            configured.

            Everything works as it should be however it will give you
            a certificate warning about untrusted issuer. That is
            because the certificates from the backend servers are used.
            So my question is: Is there a work around for this
            certificate error besides ssl offloading.
            I mean something about ssl bridging?

            Regards, Arnoud


            
------------------------------------------------------------------------------
            Live Security Virtual Conference
            Exclusive live event will cover all the ways today's
            security and
            threat landscape has changed and how IT managers can
            respond. Discussions
            will include endpoint security, mobile security and the
            latest in malware
            threats.
            http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
            _______________________________________________
            Zenloadbalancer-support mailing list
            [email protected]
            <mailto:[email protected]>
            https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support



        
------------------------------------------------------------------------------
        Live Security Virtual Conference
        Exclusive live event will cover all the ways today's security and
        threat landscape has changed and how IT managers can respond.
        Discussions
        will include endpoint security, mobile security and the latest
        in malware
        threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
        _______________________________________________
        Zenloadbalancer-support mailing list
        [email protected]
        <mailto:[email protected]>
        https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support



    
------------------------------------------------------------------------------
    Live Security Virtual Conference
    Exclusive live event will cover all the ways today's security and
    threat landscape has changed and how IT managers can respond.
    Discussions
    will include endpoint security, mobile security and the latest in
    malware
    threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
    _______________________________________________
    Zenloadbalancer-support mailing list
    [email protected]
    <mailto:[email protected]>
    https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support




------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/


_______________________________________________
Zenloadbalancer-support mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support

<<attachment: daniel.vcf>>

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Zenloadbalancer-support mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support

Reply via email to