Re: Segfault with haproxy 1.8.10

On Mon, Jun 25, 2018 at 10:45:51PM +0200, Thierry Fournier wrote: > Just for information, If someone is working on this bug, I think > that I found the origin of the crash. I check impact and the > validity of the patch, and them I submit a patch Ah cool, thank you, we'll have a fairly busy week

Re: Issue with parsing DNS from AWS

Hi Bapiste, I just wanted to follow up to see if you were able to repro and perhaps had a patch we could try? Jim From: Jim Deville Sent: Thursday, June 21, 2018 1:05:49 PM To: Baptiste Cc: haproxy@formilux.org; Jonathan Works Subject: Re: Issue with parsing

Re: Segfault with haproxy 1.8.10

Just for information, If someone is working on this bug, I think that I found the origin of the crash. I check impact and the validity of the patch, and them I submit a patch Thierry > On 25 Jun 2018, at 11:07, Thierry Fournier > wrote: > > Hi, > > I freshly compile haproxy-1.9.10, and after

Re: [PATCH] REGTEST: stick-tables: Test expiration when used with table_*

Hi Fred, On Mon, Jun 25, 2018 at 11:45:31AM +0200, Frederic Lecaille wrote: > I have attached #0003 patch for that in addition to these ones: > > #0001 : as would say Olivier "Ooops, I'am an idiot etc". > > reg-tests/ssl/h0.vtc did not run any https request. > > #0002 : set the default

Re: Haproxy client ip

Hi Malcolm I will set up a lab with this information. Thanks Daniel De: Malcolm Turnbull Enviado: segunda-feira, 25 de junho de 2018 14:05 Para: Daniel Augusto Esteves Cc: Jarno Huuskonen; simos.li...@googlemail.com; haproxy@formilux.org Assunto: Re:

Re: Haproxy client ip

Daniel, Yes, That's expected :-). It normally scares me when people say they are going to use TPROXY... It's awesome but needs a bit of thought to implement properly. This blog may help, it's a bit old, so ignore the Kernel stuff - you don't need it any more:

Re: Haproxy client ip

Hi When configuring source 0.0.0.0 usesrc clientip the backend stops responding. Best Regards Daniel De: Daniel Augusto Esteves Enviado: segunda-feira, 25 de junho de 2018 08:37 Para: Jarno Huuskonen; simos.li...@googlemail.com Cc: haproxy@formilux.org

Bug when passing variable to mapping function

Hi! While playing around with map_regm I noticed some strange behavior when using variables and map_regm. I managed to reduce it so a small test case and believe this is an actual bug. It tested this on macOS, should it be relevant. haproxy is installed via homebrew: - haproxy version

Re: Reverse String (or get 2nd level domain sample)?

Hi again! I found a working config using the map_regm converter. I think it is somewhat overcomplicated for what it is supposed to achieve, but for now it works. Leaving this here for reference: # Remove port numbers from the Host header -- we do not rely on different ports for the same

Re: Haproxy client ip

Thank you for the tips guys. Obter o Outlook para Android From: Jarno Huuskonen Sent: Monday, June 25, 2018 8:24:11 AM To: Daniel Augusto Esteves Cc: haproxy@formilux.org Subject: Re: Haproxy client ip Hi, On Mon, Jun 25, Simos

Re: Haproxy client ip

Hi, On Mon, Jun 25, Simos Xenitellis wrote: > On Sat, Jun 23, 2018 at 1:43 AM, Daniel Augusto Esteves > wrote: > > Hi > > > > I am setting up haproxy with keepalived and i need to know if is possible > > pass client ip for destination log server using haproxy in tcp mode? > > > > That can be

Re: haproxy bug: healthcheck not passing after port change when statefile is enabled

Hello, So we've dug a little deeper and the issue seems to be caused by the port value in the statefile. When the target port of a server has changed between reloads the port specified in the state file is leading. When running tcpdump you can see the healthchecks are being performed for the

Reverse String (or get 2nd level domain sample)?

Hi! Just double checking to make sure I am not simply blind: Is there a way to reverse a string using a sample converter? Background: I need to extract just the second level domain from the host header. So for sub.sample.example.com I need to fetch "example".

RE: http-response add-header

Sure, I think this is a standard solution, if someone else need it: capture data in request stage (in Frontend or Backend): http-request set-var(txn.req_host) req.hdr(Host)-> capture header host part of the request in variable req_host1 (transaction scope) use data capture in

Re: Observations about reloads and DNS SRV records

Hi, Forget the backend id, it's the wrong answer to that problem. I was investigating an other potential issue, but this does not fix the original problem reported here. Here is the answer I delivered today on discourse, where other people have also reported the same issue: Just to let you

Re: [PATCH] REGTEST: stick-tables: Test expiration when used with table_*

On 06/21/2018 04:53 AM, Willy Tarreau wrote: Hi Daniel, On Wed, Jun 20, 2018 at 10:28:43AM -0400, Daniel Corbett wrote: +shell -expect "used:0" { +echo "show table http1" |socat ${tmpdir}/h1/stats.sock - ^ This is the point where it will start to

Re: Haproxy client ip

On Sat, Jun 23, 2018 at 1:43 AM, Daniel Augusto Esteves wrote: > Hi > > I am setting up haproxy with keepalived and i need to know if is possible > pass client ip for destination log server using haproxy in tcp mode? > That can be done with the "proxy protocol". See more at

Segfault with haproxy 1.8.10

Hi, I freshly compile haproxy-1.9.10, and after the start, I display a lot of segfaults. #0 stktable_release (t=t@entry=0x274a5a8, ts=0x0) at src/stick_table.c:419 #1 0x0049a0d6 in sample_conv_in_table (arg_p=, smp=0x7fffc6ed0d70, private=) at src/stick_table.c:876 #2

RE: http-response add-header

You're right. Meanwhile I found a working version using set-vat on http-request. Thank you [APK] [Unione] mlist APKAPPA s.r.l. sede legale Via F. Albani, 21 20149 Milano | p.iva/vat no. IT-08543640158 sede amministrativa e operativa Reggio Emilia (RE) via M. K. Gandhi, 24/A 42123 - sede

RE: cookie insert method secure

Thank you for the help on bool var(…). Hard to find in documentation… Now also var(…) as ssl_fc do persist for txn (request/response). I tried adding an header based on the var persisted as bool and it worked, but as per straight “acl https_sess ssl_fc” also rspirep (or http-response) based on

Re: http-response add-header

Hi, On Sat, Jun 23, mlist wrote: > using this config no header is added to client from haproxy: > > acl is_test hdr_dom(host) -i www.url1.url2.com > > http-response add-header X-Custom-Header YES if is_test Most likely the host header is not available for the http-response/acl. For example