denied connections. I use a simple 'ab' call to stress it.
This is expected, you're rejecting at the earliest possible moment, where
no logs can be produced ("tcp-request connection"). If you want to get some
logs, reject a bit later, using "tcp-request content". Note that it works
when you're in http mode because your backend's tcp-request content rule
probably matches at a lower rate than the frontend's rule. This rule however
does not match in TCP mode since there's no HTTP request.
Regards,
Willy
regards, Ghislain.
smime.p7s
Description: Signature cryptographique S/MIME
