Hi Baptiste, as you can see using prefix or sticky table we found this invalid cookie problem.
- Why without haproxy in the middle we do not have this problem ? why a browser send an INVALID cookie ? - How we can match absence of prefix ? can be done directly by haproxy ? Roberto -----Original Message----- From: Baptiste [mailto:bed...@gmail.com] Sent: venerdì 17 luglio 2015 22.09 To: mlist Cc: haproxy@formilux.org Subject: Re: cookie prefix strange behavior Hi Roberto, Look in your log lines, block 2, HAProxy says "--IN". 'IN' is for cookie persistence. 'I' means the cookie sent by the client is invalid and 'N' means HAProxy did not perform any action on persistence. In such case, you could try to match that there are no prefix in your cookie and do a redirect to a page which cleans up the cookie then redirect the user to the login page. Baptiste On Fri, Jul 17, 2015 at 5:49 PM, mlist <ml...@apsystems.it> wrote: > We found this behavior does not appears if we manually clean cookie in the > browser. There is a configuration option to invalidate old cookie so client > does not reuse this strange cookie not recognized by server ? > > > > > > Roberto > > > > > > > > From: mlist > Sent: venerdì 17 luglio 2015 16.19 > To: 'haproxy@formilux.org' > Subject: cookie prefix strange behavior > > > > We have compiled and installed haproxy version 1.6 dev2. > > > > If we use cookie insert all works, but if we use cookie prefix > (ASP.NET_SessionId) or sticky table in which one have to specify cookie to > be sticked, so using cookie name = ASP.NET_SessionId) we have a strange > behavior. > > > > BLOCK1 > > As you can see below, we open a browser and make a request, cookie prefix > mechanism works well, we can login and use the application (all subsequent > requests go on the some server). > > > > BLOCK2 > > But if we open a new browser instance (chrome in this case, but this happen > also if we open IE) the client uses a strange “ASP.NET_SessionId” cookie > without haproxy prefix with back-end server, server does not ask client to > set a new cookie. > > As of login, clearly, backend server does not recognize the cookie sent by > client (haproxy do a plain roundrobin distribution, no cookie management was > done) and so backend server return an error. > > Can this be a bug of haproxy or a bad configuration by us ? > > > > > > > > BLOCK1 > > Jul 17 14:55:49 ha_server1 haproxy[5604]: client_ip:37322 > [17/Jul/2015:14:55:49.414] front_end_https~ back_end_https/SERVER1 > 2/0/44/18/64 302 467 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/ HTTP/1.1" > > Jul 17 14:55:49 ha_server1 haproxy[5604]: client_ip:37324 > [17/Jul/2015:14:55:49.484] front_end_https~ back_end_https/SERVER1 > 2/0/5/22/29 200 6449 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/login.aspx HTTP/1.1" > > Jul 17 14:55:52 ha_server1 haproxy[5604]: client_ip:37328 > [17/Jul/2015:14:55:52.284] front_end_https~ back_end_https/SERVER1 2/0/1/3/7 > 404 1424 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 0/0/0/0/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/segreteria HTTP/1.1" > > Jul 17 14:55:59 ha_server1 haproxy[5604]: client_ip:37344 > [17/Jul/2015:14:55:59.452] front_end_https~ back_end_https/SERVER1 2/0/1/2/5 > 301 448 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 0/0/0/0/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/anagrafenet HTTP/1.1" > > Jul 17 14:55:59 ha_server1 haproxy[5604]: client_ip:37345 > [17/Jul/2015:14:55:59.461] front_end_https~ back_end_https/SERVER1 > 2/0/1/32/36 302 435 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/anagrafenet/ HTTP/1.1" > > Jul 17 14:55:59 ha_server1 haproxy[5604]: client_ip:37346 > [17/Jul/2015:14:55:59.501] front_end_https~ back_end_https/SERVER1 > 2/0/1/27/31 200 6625 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/login.aspx HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37359 > [17/Jul/2015:14:56:06.515] front_end_https~ back_end_https/SERVER1 > 1/0/4/64/69 302 6712 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {|946|Mozilla/5.0 (Windows NT 6.2; WOW64) > AppleWebKit/537.36 (KHTML, l} "POST /app1/login.aspx HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37361 > [17/Jul/2015:14:56:06.588] front_end_https~ back_end_https/SERVER1 > 2/0/1/175/179 200 28897 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/anagrafenet/default.aspx HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37364 > [17/Jul/2015:14:56:06.777] front_end_https~ back_end_https/SERVER1 > 5/0/2/11/18 200 2049 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 5/5/5/5/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/sf-menu.css HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37363 > [17/Jul/2015:14:56:06.776] front_end_https~ back_end_https/SERVER1 > 6/0/3/13/22 200 3580 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 4/4/4/4/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/menu/supersubs.js HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37367 > [17/Jul/2015:14:56:06.779] front_end_https~ back_end_https/SERVER1 > 3/0/3/15/22 200 17829 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 4/4/3/3/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/script/dwfunctions.js HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37369 > [17/Jul/2015:14:56:06.801] front_end_https~ back_end_https/SERVER1 4/0/1/2/7 > 200 397 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 4/4/4/4/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/img/layout/tearoff_icon.gif HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37365 > [17/Jul/2015:14:56:06.777] front_end_https~ back_end_https/SERVER1 > 5/0/4/22/32 200 3456 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 3/3/3/3/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/menu/hoverintent.js HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37368 > [17/Jul/2015:14:56:06.800] front_end_https~ back_end_https/SERVER1 > 1/0/6/9/17 200 3996 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 2/2/2/2/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/menu/superfish.js HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37362 > [17/Jul/2015:14:56:06.776] front_end_https~ back_end_https/SERVER1 > 5/0/4/30/41 200 34775 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 1/1/1/1/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/css/procedure.css HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37366 > [17/Jul/2015:14:56:06.778] front_end_https~ back_end_https/SERVER1 > 4/0/2/30/42 200 91839 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/script/jquery.min.js HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37370 > [17/Jul/2015:14:56:06.854] front_end_https~ back_end_https/SERVER1 > 1/0/2/8/11 200 3565 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/superfish.css HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37371 > [17/Jul/2015:14:56:06.872] front_end_https~ back_end_https/SERVER1 > 1/0/3/15/19 200 10688 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/anagrafenet/home.aspx HTTP/1.1" > > Jul 17 14:56:06 ha_server1 haproxy[5604]: client_ip:37372 > [17/Jul/2015:14:56:06.965] front_end_https~ back_end_https/SERVER1 2/0/1/2/5 > 200 492 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 0/0/0/0/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/templatelibrary/menutop/img/arrows-006699.png HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37376 > [17/Jul/2015:14:56:06.997] front_end_https~ back_end_https/SERVER1 > 6/0/2/2/10 200 432 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN > 5/5/5/5/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/img/apps.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37377 > [17/Jul/2015:14:56:06.997] front_end_https~ back_end_https/SERVER1 5/0/2/2/9 > 200 430 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 4/4/4/4/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/templatelibrary/menutop/img/apsnet.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37378 > [17/Jul/2015:14:56:06.998] front_end_https~ back_end_https/SERVER1 4/0/3/2/9 > 200 467 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 3/3/3/3/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/templatelibrary/menutop/img/help.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37380 > [17/Jul/2015:14:56:07.008] front_end_https~ back_end_https/SERVER1 3/0/2/2/8 > 200 434 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 4/4/4/4/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/templatelibrary/menutop/img/reco.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37381 > [17/Jul/2015:14:56:07.009] front_end_https~ back_end_https/SERVER1 2/0/2/2/7 > 200 513 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 3/3/3/3/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/img/layout/favorite.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37375 > [17/Jul/2015:14:56:06.996] front_end_https~ back_end_https/SERVER1 > 6/0/3/12/21 200 3064 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 2/2/2/2/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/script/common.js HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37374 > [17/Jul/2015:14:56:06.995] front_end_https~ back_end_https/SERVER1 > 7/0/2/29/38 200 4430 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 1/1/1/1/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/templateresponsive.css > HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37373 > [17/Jul/2015:14:56:06.994] front_end_https~ back_end_https/SERVER1 > 8/0/2/34/72 200 109786 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 1/1/1/1/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/script/bootstrap-3.2.0/css/bootstrap.min.css HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37382 > [17/Jul/2015:14:56:07.037] front_end_https~ back_end_https/SERVER1 > 1/0/3/27/33 200 28321 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/commonresponsive.css HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37383 > [17/Jul/2015:14:56:07.079] front_end_https~ back_end_https/SERVER1 > 2/0/1/43/74 200 117573 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/script/bootstrap-3.3.4/css/bootstrap.min.css HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37384 > [17/Jul/2015:14:56:07.172] front_end_https~ back_end_https/SERVER1 2/0/2/2/6 > 200 842 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - --VN 1/1/1/1/0 > 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "GET /app1/templatelibrary/menutop/loading.html HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37385 > [17/Jul/2015:14:56:07.174] front_end_https~ back_end_https/SERVER1 > 1/0/2/18/21 200 9620 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 1/1/1/1/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET > /app1/templatelibrary/menutop/img/homebackground/anagrafenet.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37386 > [17/Jul/2015:14:56:07.183] front_end_https~ back_end_https/SERVER1 > 2/0/1/22/25 200 5763 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/templatelibrary/menutop/img/loading.gif HTTP/1.1" > > Jul 17 14:56:07 ha_server1 haproxy[5604]: client_ip:37387 > [17/Jul/2015:14:56:07.213] front_end_https~ back_end_https/SERVER1 > 2/0/1/38/41 200 5378 ASP.NET_SessionId=SERVER1~fi2b5smpq33tgwfy0qqmog45 - > --VN 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/getnews.aspx HTTP/1.1" > > > > > > > > > > BLOCK2 > > Jul 17 14:56:21 ha_server1 haproxy[5604]: client_ip:37419 > [17/Jul/2015:14:56:21.068] front_end_https~ back_end_https/SERVER2 > 250/0/1/18/269 302 467 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN > 5/5/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/ HTTP/1.1" > > Jul 17 14:56:21 ha_server1 haproxy[5604]: client_ip:37421 > [17/Jul/2015:14:56:21.069] front_end_https~ back_end_https/SERVER1 > 271/0/4/24/299 200 6449 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN > 4/4/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/login.aspx HTTP/1.1" > > Jul 17 14:56:21 ha_server1 haproxy[5604]: client_ip:37423 > [17/Jul/2015:14:56:21.069] front_end_https~ back_end_https/SERVER2 > 367/0/2/5/374 302 545 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN > 3/3/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET > /app1/WebResource.axd?d=ms47pJYA_UXqNr5FqMzZqSiwult13NImZs-9Jg4qVw2eCS431G69FnLdckr5O0on2tdADrDt11CRw42HC1HwsFzVtvU1&t=635589471570790873 > HTTP/1.1" > > Jul 17 14:56:21 ha_server1 haproxy[5604]: client_ip:37420 > [17/Jul/2015:14:56:21.068] front_end_https~ back_end_https/SERVER1 > 377/0/1/10/388 200 11039 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN > 2/2/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/errore.aspx?errid=657205b9-cfa6-4112-927b-10850a95912e > HTTP/1.1" > > Jul 17 14:56:43 ha_server1 haproxy[5604]: client_ip:37458 > [17/Jul/2015:14:56:43.700] front_end_https~ back_end_https/SERVER2 2/0/1/5/8 > 302 545 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN 0/0/0/0/0 0/0 > {|842|Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, l} > "POST /app1/login.aspx HTTP/1.1" > > Jul 17 14:56:43 ha_server1 haproxy[5604]: client_ip:37459 > [17/Jul/2015:14:56:43.740] front_end_https~ back_end_https/SERVER1 > 2/0/1/10/13 200 11039 ASP.NET_SessionId=x25bf045br0mp0mdoe0wkgvh - --IN > 0/0/0/0/0 0/0 {||Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 > (KHTML, l} "GET /app1/errore.aspx?errid=134637c2-f960-44ae-871d-eb581e8b5ea6 > HTTP/1.1" > > > > > > > > This is our configuration file: > > > > #--------------------------------------------------------------------- > > # Global settings > > #--------------------------------------------------------------------- > > global > > log 127.0.0.1:514 local0 > > chroot /var/lib/haproxy > > pidfile /var/run/haproxy.pid > > maxconn 10000 > > # user haproxy > > # group haproxy > > daemon > > quiet > > tune.ssl.default-dh-param 2048 > > # turn on stats unix socket > > stats socket /var/lib/haproxy/stats > > > > #--------------------------------------------------------------------- > > # common defaults that all the 'listen' and 'backend' sections will > > # use if not designated in their block > > #--------------------------------------------------------------------- > > defaults > > mode http > > log global > > option httplog > > option dontlognull > > option http-server-close > > option forwardfor except 127.0.0.0/8 > > option redispatch > > retries 3 > > timeout http-request 10s > > timeout queue 1m > > timeout connect 10s > > timeout client 1m > > timeout server 5m > > timeout http-keep-alive 10s > > timeout check 10s > > maxconn 10000 > > stats enable > > stats uri /stats > > > > > > #--------------------------------------------------------------------- > > # mailer configuration > > #--------------------------------------------------------------------- > > mailers apsmailer1 > > mailer smtp1 <mail_ip>:10025 > > > > > > frontend front_end_https > > mode http > > bind *:443 ssl crt /etc/ssl/certs/hypersic.cert.pem > > option forwardfor > > option http-server-close > > reqadd X-Forwarded-Proto:\ https > > default_backend hypersic_net_https > > capture request header Referrer len 64 > > capture request header Content-Length len 10 > > capture request header User-Agent len 64 > > capture cookie ASP len 64 > > > > backend back_end_https > > mode http > > balance roundrobin > > ### Cookie Insert Method > > # cookie SERVERID insert indirect nocache > > ### Cookie Prefix Method > > cookie ASP.NET_SessionId prefix nocache > > ### Stick Table Method > > # stick-table type string len 64 size 100k expire 15m > > # stick store-response res.cook(ASP.NET_SessionId) > > # stick match req.cook(ASP.NET_SessionId) > > email-alert mailers apsmailer1 > > email-alert from al...@mydom.com > > email-alert to recipi...@mydom.com > > email-alert myhostname smtp1 > > email-alert level info > > server SERVER1 <server1_ip>:443 check ssl inter 15s weight 50 verify > required ca-file /etc/ssl/certs/ca-bundle.crt cookie SERVER1 > > server SERVER2 <server2_ip>:443 check ssl inter 5s weight 50 verify > required ca-file /etc/ssl/certs/ca-bundle.crt cookie SERVER2 > > > > > > frontend front_end_http > > mode http > > bind *:80 > > option forwardfor > > option http-server-close > > reqadd X-Forwarded-Proto:\ http > > default_backend hypersic_net_http > > capture request header Referrer len 64 > > capture request header Content-Length len 10 > > capture request header User-Agent len 64 > > capture cookie ASP len 64 > > > > > > backend back_end_http > > mode http > > balance roundrobin > > ### Cookie Insert Method > > # cookie SERVERID insert indirect nocache > > ### Cookie Prefix Method > > cookie ASP.NET_SessionId prefix nocache > > ### Stick Table Method > > # stick-table type string len 64 size 100k expire 15m > > # stick store-response res.cook(ASP.NET_SessionId) > > # stick match req.cook(ASP.NET_SessionId) > > email-alert mailers apsmailer1 > > email-alert from al...@mydom.com > > email-alert to recipi...@mydom.com > > email-alert myhostname smtp1 > > email-alert level inf > > server SERVER1 <server1_ip>:80 check inter 5s weight 50 cookie SERVER1 > > server SERVER2 <server2_ip>:80 check inter 15s weight 50 cookie SERVER2 > > > > > > Roberto > > > > > > -- Il messaggio e' stato analizzato alla ricerca di virus o contenuti pericolosi da MailScanner, ed e' risultato non infetto.