Hi Willy/Yuxans,
Appreciate for your quick reply. Another question is our haproxy log shows many
503 errors. Could you please take a look the attached configuration and log
files and give us some suggestions?
Many thanks!
Liang Hong
--
Liang Hong
System Operation Engineer
T8586
Hi Liang:
tune.bufsize or other?
maybe.
Regards,
Yuxans Yao
于 2012年11月07日 16:03, 洪靓 写道:
Hi Willy/Yuxans,
Appreciate for your quick reply. Another question is our haproxy log
shows many 503 errors. Could you please take a look the attached
configuration and log files and give us some
Hi Liang,
On Wed, Nov 07, 2012 at 04:03:47PM +0800, ?? wrote:
Hi Willy/Yuxans,
Appreciate for your quick reply. Another question is our haproxy log shows
many 503 errors. Could you please take a look the attached configuration and
log files and give us some suggestions?
There's
Hi Willy,
The version is 1.4.21
We will try to remove option abortonclose and test if the problem persists.
Thanks.
Liang Hong
--
Liang Hong
System Operation Engineer
T8586 5673-821
F010-6550 5686
M 187 1019 5645
Eliang.h...@ipinyou.com
北京市朝阳区八里庄西里100号东区
Hi Willy, Liang:
Please forgive me for my poor English.
In my experience of using HA Proxy 1.4.8 in 2009, there are some 50x
errors when Nginx is used to be backend server.
The errors can take over 0.5% of total requests.
However, the error rate can be reduced to 0.1% when increasing the size
On Tue, Nov 6, 2012 at 8:08 PM, Willy Tarreau w...@1wt.eu wrote:
I believe the official word at one point was that OCSP stapling of chains
should be accomplished by including the entire chain in the OCSP request,
delivering that compound OCSP response via the TLS Certificate Status Request
On Wed, Nov 7, 2012 at 8:07 AM, Willy Tarreau w...@1wt.eu wrote:
Hi Karel,
On Wed, Nov 07, 2012 at 05:55:15AM +0100, Karel Sedlá??ek wrote:
I was hoping that feature branch would start with the code you mentioned.
For my use case, just piping the data into the backend is more than
On Tue, Nov 6, 2012 at 11:08 PM, Willy Tarreau w...@1wt.eu wrote:
I would say the periodic-request aspect of it is pretty trivial; you add a
timer to the event loop that expires in some configurable amount of time,
e.g. a bit before the last OCSP response expires, and you cache the result
Hi,
I just updated my haproxy to the current HEAD
(08289f12f9a13ea06cf4a16a1211e82e003af218).
I now have acl issues: the hdr_dom matching seems to be ignored. This
was working perfectly fine with the previous build I used
(1bc4aab2902d732530ccbd098d30e519aab3abdd)
The configuration is quite
Signed-off-by: Marc-Antoine Perennou marc-anto...@perennou.com
---
doc/haproxy-en.txt | 1 +
doc/haproxy-fr.txt | 1 +
doc/haproxy.1 | 4
include/types/global.h | 1 +
src/haproxy.c | 31 +++
5 files changed, 26 insertions(+), 12
I'm all for the idea of OCSP stapling at some point, but if this is
indeed still the current state of the world, then stapling continues
to be broken and probably should take lower priority to things that
are not broken, e.g. client cert info passing, or less broken, e.g.
OCSP checking of client
Argh sorry for the noise.
I was bisecting and... I cannot reproduce anymore this issue!
I do not understand why...
I have nothing special in the logs. I only saw the request passed to the
backend, no error shown.
Anyway, as the issue has currently vanished. This can be closed! I will
now try
Anyway, as the issue has currently vanished. This can be closed! I will
now try to update an other server and play with the brand new
compression :)
Good news.
Don't hesitate to report your feedback here.
cheers
2012/11/7 Hervé COMMOWICK herve.commow...@lizeo-group.com:
As of now, on client side, it is only working on IE9 (not before not
after) and Opera, not so common...
It's enable in Firefox for a long time (Edit / Preference / Advanced /
Encryption / Validation or search ocsp in about:config).
See
OCSP is obviously enabled, but not ocsp stapling.
On 11/07/2012 05:18 PM, joris dedieu wrote:
2012/11/7 Hervé COMMOWICK herve.commow...@lizeo-group.com:
As of now, on client side, it is only working on IE9 (not before not
after) and Opera, not so common...
It's enable in Firefox for a long
Hi all,
Le 07/11/2012 16:19, Baptiste a écrit :
For those who are interested, here is an article on HAProxy and Websockets.
(it includes the health check as well)
And here is the link (you forgot it in your mail ;-) )
http://blog.exceliance.fr/2012/11/07/websockets-load-balancing-with-haproxy/
Exhaustive explanation, thank you.
On Wed, Nov 7, 2012 at 11:25 PM, Cyril Bonté cyril.bo...@free.fr wrote:
Hi all,
Le 07/11/2012 16:19, Baptiste a écrit :
For those who are interested, here is an article on HAProxy and
Websockets.
(it includes the health check as well)
And here is the
17 matches
Mail list logo
