Re: dumb question ACL question
great, thanks! On Tue, Apr 28, 2015 at 12:56 PM, Cyril Bonté wrote: > Hi David, > > > Le 28/04/2015 21:46, David Birdsong a écrit : > >> I'm only looking for the presence of a header to set an ACL, nothing more. >> >> header is "XAMGIF" >> >> conf snippet: >> acl anim_gif req.fhdr_cnt(XAMGIF) 1 >> >> this correct? >> > > Yes, but it won't match if the header is provided several times. > You may prefer : > acl anim_gif req.hdr(XAMGIF) -m found > > > -- > Cyril Bonté >
Re: dumb question ACL question
Hi David, Le 28/04/2015 21:46, David Birdsong a écrit : I'm only looking for the presence of a header to set an ACL, nothing more. header is "XAMGIF" conf snippet: acl anim_gif req.fhdr_cnt(XAMGIF) 1 this correct? Yes, but it won't match if the header is provided several times. You may prefer : acl anim_gif req.hdr(XAMGIF) -m found -- Cyril Bonté
dumb question ACL question
I'm only looking for the presence of a header to set an ACL, nothing more. header is "XAMGIF" conf snippet: acl anim_gif req.fhdr_cnt(XAMGIF) 1 this correct?
Re: ACL question
like this acl is_secure dst_port 9443 9444 Baptiste On Mon, Jan 28, 2013 at 3:33 PM, William Lewis wrote: > How do I define such an ACL so that's valid > > acl is_secure dst_port eq 9443 || dst_port eq 9444 >
ACL question
How do I define such an ACL so that's valid acl is_secure dst_port eq 9443 || dst_port eq 9444
Re: ACL Question
Hi Guys, I appreciate the responses, over the weekend I decided to test with using NFS and a single caching server for the application caching module and it worked great, so I don't have to set haproxy to try to send the same request to multiple servers *S* I just have to send it to a single box now. I was just curious if it could be done. *S* Love Haproxy and I recommend it to every one now. Joe Willy Tarreau wrote: Hi, On Fri, Nov 06, 2009 at 11:35:24AM +0100, XANi wrote: Hi, On Thu, 05 Nov 2009 19:44:03 -0500, Joseph Hardeman wrote: Hi Everyone, I know you can use acl's to take a request for a file and send it to a different backend than the normal requests go to, but I was wondering can an acl be setup so that when a request for a file, say update.php, is called via the external url, for example: http://www.example.com/update.php Instead of sending it to a single server can you send it to all of the backend servers at the same time? (...) AFAIK there isn't any possibility to do "send reqest to that backend AND do something else" (i'd love having possibility to use external rewriting software, like squid can). indeed, it is not possible to play a request multiple times (and this has nothing to do with ACLs). What kind of cache do u use ? If it's memcached u can make one big "global" cache quite easily (in most client libs u just need to specify all servers in same order), and in other types of cache you would have to have script that whne cache gets updated on one backend it sends updates to other ones. It's often quite common to see people send remote actions to directed target servers, most often it's just to verify that all servers are up to date. For this they simply use cookies. If you set a passive cookie for each of your cache servers, you can decide which one you use and your script can simply use that : cookie SRV server cache1 1.1.1.1 cookie c1 ... server cache2 1.1.1.2 cookie c2 ... server cache3 1.1.1.3 cookie c3 ... Regards, Willy -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: ACL Question
Hi, On Fri, Nov 06, 2009 at 11:35:24AM +0100, XANi wrote: > Hi, > > On Thu, 05 Nov 2009 19:44:03 -0500, Joseph Hardeman > wrote: > > Hi Everyone, > > > > I know you can use acl's to take a request for a file and send it to > > a different backend than the normal requests go to, but I was > > wondering can an acl be setup so that when a request for a file, say > > update.php, is called via the external url, for example: > > > > http://www.example.com/update.php > > > > Instead of sending it to a single server can you send it to all of > > the backend servers at the same time? (...) > AFAIK there isn't any possibility to do "send reqest to that backend > AND do something else" (i'd love having possibility to use external > rewriting software, like squid can). indeed, it is not possible to play a request multiple times (and this has nothing to do with ACLs). > What kind of cache do u use ? If it's memcached u can make one big > "global" cache quite easily (in most client libs u just need to specify > all servers in same order), and in other types of cache you would have > to have script that whne cache gets updated on one backend it sends > updates to other ones. It's often quite common to see people send remote actions to directed target servers, most often it's just to verify that all servers are up to date. For this they simply use cookies. If you set a passive cookie for each of your cache servers, you can decide which one you use and your script can simply use that : cookie SRV server cache1 1.1.1.1 cookie c1 ... server cache2 1.1.1.2 cookie c2 ... server cache3 1.1.1.3 cookie c3 ... Regards, Willy
ACL Question
Hi Everyone, I know you can use acl's to take a request for a file and send it to a different backend than the normal requests go to, but I was wondering can an acl be setup so that when a request for a file, say update.php, is called via the external url, for example: http://www.example.com/update.php Instead of sending it to a single server can you send it to all of the backend servers at the same time? For example, if you have a cache on each backend that needs to be updated all at the same time when a post is made from a visitor? So lets say my visitor hits backend http://b1.example.com/my/own/blog where they post a comment and I have a script setup so that when the post request is made it calls http://www.example.com/update.php to update the cache directory with the new content. With a single cache server this normally wouldn't be a question, but having the cache on each backend makes it more difficult and I am curious if I can have the call for update.php sent to all the backends instead of my having to run a cron job on each system to make the call every minute or so. Thanks everyone Joe -- This message has been scanned for viruses by Colocube's AV Scanner