@jbuk wrote:
Hi, I’m running haproxy 1.5.18 on CentOS and it is load balancing a couple of Windows Server 2016 machines. I’m hitting an issue whereby if I try and run a vulnerability scan e.g. from Qualys, after a while the Windows Server becomes inaccessible to the HAProxy. I can’t ping it or access websites from the haproxy but connections to it are available from other devices. Then, when the scans stop, and after a while the connectivity returns. The config is similar to this:
global log 127.0.0.1 local2 chroot /var/lib/haproxy pidfile /var/run/haproxy.pid maxconn 100000 user hap group hap daemon stats socket /var/lib/haproxy/stats defaults log global option dontlognull option http-server-close option redispatch retries 3 timeout http-request 10s timeout queue 1m timeout connect 10s timeout client 60m timeout server 60m timeout http-keep-alive 10s timeout check 10s maxconn 5000 frontend 1.2.3.4-http bind 1.2.3.4:80 reqadd X-Forwarded-Proto:\ http mode http option forwardfor except 127.0.0.1/8 option httplog option http-server-close timeout http-request 10s timeout http-keep-alive 10s use_backend scan-test frontend 1.2.3.4-https bind 1.2.3.4:443 ssl crt /etc/certs/cert1.pem reqadd X-Forwarded-Proto:\ https mode http option forwardfor except 127.0.0.1/8 option httplog option http-server-close timeout http-request 10s timeout http-keep-alive 10s use_backend scan-test backend scan-test balance leastconn cookie serverid insert mode http option httpchk GET /pagemonitor.txt http-check expect rstatus ([2-3][0-9][0-9]) server server1_http 192.168.1.101:80 cookie 1 check inter 30000 server server2_http 192.168.1.102:80 cookie 2 check inter 30000Has anyone experienced this issue before?
Posts: 3
Participants: 2