Clik here to view.
Capture tcp payload on HAProxy
HAProxy version:2.2.1 I wanna capture tcp packet and make acl by captured tcp packet but now I’m trying to capture payload it doesn’t work. My configuration frontend hts_frontend bind *:8400 mode tcp...
View ArticleMultiple ssl/sni frontend configs without sharing config settings between sni...
I am currently having two different frontends, both I want to offer on ssl 443. However each front end has different acls, http-response set-headers. I think the default[1] to redirect to backends is...
View ArticleMultiple condition group ordering
Hi, I would like to do something like this (logically): http-request deny unless acl1 OR acl2 OR (acl3 AND acl4) Would this statement do that? http-request deny unless acl1 or acl2 or acl3 acl4...
View ArticleMonitoring websockets with haproxy 2.2
Greetings - I’m working on upgrading haproxy from 1.8 to 2.2. I went through and corrected all of the warnings but I hit a snag with how we monitor websocket backends. Right now, we do this in the...
View ArticleServers number limit for balancing algorithms
We use HAProxy to balance the load between hundreds of servers, however, there is an issue which is new for us and unexpected (works in any HAProxy version). When number of servers in some backend...
View ArticleResolvers section with non existing dns servers possible?
I have different nameserver ip’s for different networks. Is it possible to just configure them all, and have haproxy figure out which ones exist, and ignore the ones that can’t be reached? With this...
View ArticleSNI switching with haproxy kubernetes controller
Is it possible to use SNI switching as detailed in this article when using haproxy deployed to kubernetes with helm? I want to expose a singe loadbalancer and direct traffic to backend SSL services...
View ArticleChecking multiple conditions does not work
Hi, I want to check 2 conditions on redis, where it should be master and on other checks, at least 2 of 3 sentinel nodes should provide this redis-instance being master. Therefore, number of servers...
View ArticleClik here to view.
There is a problem with the DNS SRV record process
I am using haproxy with k8s handless svc. when pod destroy, haproxy maint the server. when pod resume, haproxy setr addr, but no update server status to ready. “log” 2020-08-04T12:36:41+08:00...
View ArticleHaproxy 2.2.x and problem with proto h2 in backend
Hello, upgraded haproxy 2.1.x -> 2.2.x, everything working, almost using haproxy as reverse proxy for apache servers configuration for apache backends backend default server backend:80 127.0.0.1:80...
View ArticleHaproxy 2.2.0 sends sessions to backend with state DOWN
Hello, I am running 2 replicas of haproxy 2.2.0 in a docker swarm. The scenario is the following: I have a backend that includes 10 servers. 3 of them are UP and running (service 0, 1 and 2) and at...
View ArticleHaproxy 2.1.4 too many SSL Handshake failures
Hi we are using haproxy 2.1.4 as SSL terminator between our own client and server machines(High load machines, always busy) and also requests will be a mix of http/1.1 and http/2.0. We are facing lots...
View ArticleHow to run HAProxy with non-Root User
Hi, We are able to run HAPROXY process via a non-root user but the problem is if we need to restart it, we have to do it via “root” user only which is not what we want. We are trying to have complete...
View ArticleCondition with path_reg and map_reg with regexp
Currently, I have a bunch of rules in haproxy.cfg like this: frontend frontend-https bind 10.30.1.120:443 redirect prefix http://customerwebapp.com/redir.jsp?customer_domain_id=123 code 301 if {...
View Article503 Service Unavailable - Rundeck
03:27:41 # service haproxy restart Stopping haproxy: [ OK ] Starting haproxy: [WARNING] 218/032810 (8549) : parsing [/etc/haproxy/haproxy.cfg:22] : ‘log-format’ : format variable ‘r’ is reserved for...
View ArticleHot-update client CA certificates via Runtime API
Is it possible, given HAProxy 2.2 update, to add new CA certificates (for client certs validation), along with SSL server certificates, via Realitme API? For each new customer I’d like to add one line...
View ArticleExchange 2010 and setup through haproxy
Hi, I was wondering if someone can point me in the right direction of resolving an exchange CAS server setup. When using owa we receive error “The custom error module does not recognize this error”...
View ArticleClik here to view.
[HAProxy 2.2.2] Problem with L7 fetch method `base` & `url`
I am setting up a reverse proxy that handles request target.com.mirror.abc.xyz:8888 and acts as the man in the middle between a client and target.com:8888. It also respects the original scheme of...
View ArticleHow to compile HAProxy
Hi I hve tried to compile HAProxy after what I have found by googling a round make TARGET=linux-glibc CPU=native USE_STATIC_PCRE=1 USE_OPENSSL=1.1.1 USE_ZLIB=1 sudo make install sudo touch...
View ArticleSHNN 3/1/0/0/0 errors
I am getting these synapse~ synapse/synapse1 0/0/0/-1/5 502 214 - - SHNN 3/1/0/0/0 0/0 “GET / HTTP/1.1” https _recir_synapse/loopback-for-tls 5/0/1839 2339 SD 2/1/0/0/0 0/0 I saw some posts and tried...
View Article