Dear all, I have HAproxy in front of a web server node.
I want the web server node to accept just 1000 concurrent connections.
So I want to use the maxconn parameter in order to let new connections
above 1000 to wait until the web service has free workers.
According to what I read, if I define
Dear all,
I have HAproxy 1.8.27 which has TLS 1.0/1.1/1.2/1.3 support.
I have defined two URL's inside the haproxy.cfg:
www1.example.com
www2.example.com
If I test the TLS support connection using openssl and nmap, I get the
following:
www1.example.com --> TLS 1.2
www2.example.com --> TLS 1.3
Thanks, I'll check it out.
El mar, 25 oct 2022 a las 20:27, Aleksandar Lazic
() escribió:
>
> Hi Roberto.
>
> On 25.10.22 17:01, Roberto Carna wrote:
> > Sorry, I want two different backends with same IP/port and different
> > SSL options as follow, and the same
if url_web2
I made the above configuration, but sometimes the web traffic doesn't
reach the second server, until a browser refresh.
Special thanks!
El mar, 25 oct 2022 a las 10:16, Roberto Carna
() escribió:
>
> Dear, I have a HAproxy server with two different frontends with the
> same IP
Dear, I have a HAproxy server with two different frontends with the
same IP and port, both pointing to different backends, as follow:
frontend Web1
bind 10.10.1.1:443 ssl crt /root/ssl/ no-sslv3 no-tlsv10 no-tlsv11
no-tls-tickets force-tlsv12
acl url_web1hdr_dom(host)
; Hi Roberto.
> >
> > On 24.10.22 03:21, Roberto Carna wrote:
> >> Dear, I have this scenario:
> >>
> >> Internet --> HAproxy Frontend --> HAproxy Backend --> Web servers
> >
> > What is the config for the frontend of the HAProxy Frontend?
>
Dear, I have this scenario:
Internet --> HAproxy Frontend --> HAproxy Backend --> Web servers
HAproxy version 1.5.8 in frontend (disabling protocols in the backend
section connected to HAProxy backend):
server HA-Backend 172.20.20.1:443 ssl verify none ciphers
Thanks for the answer.
Regards!
El lun, 3 oct 2022 a las 12:44, Aleksandar Lazic
() escribió:
>
> Hi.
>
> On 03.10.22 16:29, Roberto Carna wrote:
> > Dear, I have a HAProxy with several web applications but I have to
> > solve the cookie without a secure flag
Dear, I have a HAProxy with several web applications but I have to
solve the cookie without a secure flag problem in just one web
application.
Do I have to define the "http-response replace header" option in the
frontend section or in the backend section of haproxy.cfg ? Or is it
the same ?
Dear all, I have to change my haproxy.cfg file in order to enable two
FTP connections to the same server, with these requirements:
FTP server IP: 10.10.1.10
1st FTP service:
FTP Control: port 21
FTP Data: port 11000 to 11010
2nd FTP service:
FTP Control: port 2100
FTP Data: 11000 to 10010 (same
data connections.
> I don’t know if you can configure HAProxy in a way to dynamically use the
> same port to the backend, that was used in the frontend.
> But I am not aware of such a feature.
>
> You could explicitly create all listeners for the data ports you use and
> explicitl
Dear all, I have to put to work an FTP server (Filezilla) in my backend
network, as this:
Internet -- Firewall -- HAProxy Frontend -- HAProxy Backend -- FTP server
(passive mode)
This is my configuration in my HAProxy FE:
frontend Frontend_FTP
bind *:21
bind *:2-20010
mode tcp
Dear all, I have haproxy-1.5.18-3.el7.x86_64 running OK.
Development area are claiming for an error, after clicking on a given URL
from an internal App. We have two backends nodes, and when DEV tries
pointing to just one node, the click is OK. So we thought it was a
persistent session problem, so
Dear all, I have the below platform:
Red Hat 8
HAProxy 1.8.23
Metricbeat 7.14 with haproxy module enabled
Viewing /var/log/messages I can see the following error:
Sep 2 16:00:30 SERVER1 metricbeat[2952173]:
2021-09-02T16:00:30.669-0300#011INFO#011module/wrapper.go:259#011Error
fetching data
Dear, I have a HAProxy balancing traffic to several nodes of the same farm.
I have not implemented any service/port check in order to monitor node
status (Up or Down), so the current node status at the statistics web
page is: NO CHECK.
backend myapp
balance roundrobin
option
16 matches
Mail list logo