Pass UDP traffic without load balancing?
I have IOT sensors reporting data to a server everything reports to a domain name. I need to put ha proxy to distribute load using sticky sessions most IOT sensors use TCP, but some use UDP I’m ok...
View ArticleHAPROXY ssl_c_sha256 in 1.7 version
Hi, We are currently using HAPROXY version 1.7 I am trying to extract sha-256 encoded fingerprint on HAPROXY 1.7. with below configuration I am oble able to extract sha1 encoded format. http-request...
View ArticleCan haproxy close connection as soon as the client closes its connection
Hello, I am seeing connections in state CD–, where the transaction takes 155 seconds, but the client aborts the connection after 25 seconds. Is it possible to have haproxy cutting the connection as...
View ArticleHaproxy - Routing failing with nodejs app
Hi everyone, I was following this guide, unfortunately I’m facing to the following issue : When I try to reach “mydomain.example/myapp”, I’m getting “Cannot GET /myapp” As a test, I created 2...
View ArticleHAProxy 2.2.4 SSL Handshake Failure
I’m getting a number of these per day, one burst every 5-10 minutes. I’ve been reluctant to change the SSL settings from standard to not risk angering the SSLLabs and other security metrics. Compared...
View ArticleWe have to install haproxy with binary with ssl enabled
i f we install haproxy with yum install, the ssl can’t be enabled, right ? it will helpful to provide a official installation guide for haproxy installation with ssl enabled. thanks. 2 posts - 2...
View Articleissue with TLS termination
Hi everybody, I got an issue with HAProxy with SSL/TLS termination. When I do a HTTPS request, I got the following error : Oct 16 10:39:28 localhost haproxy[724]: xxx.xxx.xxx.xxx:62597 [16/Oct/2020:16...
View ArticleHA 2.2 connection header disappeared
Hi, I have the following test installation on HA-Proxy version 2.2.4-1ppa1~bionic 2020/10/02: defaults log global mode http option httplog option dontlognull timeout connect 5000 timeout client 50000...
View ArticleHAProxy maxconn not working or maxconn exceeded
Hi everyone, we are running HAProxy server. Our haproxy configuration file has global maxconn 16384 defaults max-keep-alive-queue 300 server varnish01 yyy.yyy.yyy.yy::80 check maxconn 1000 server...
View ArticlegRPC via HTTP2 - do not work
Hi. I’m trying to make work one service hosted on openshift through HAproxy. I have 2 host: <Host_G> - HAproxy gateway, <Host_T> - target openshift with exposed service. Host_G &...
View ArticleIgnore / pass-through SSL for some domains and terminate / decrypt for other
Hi Everybody, Thank you very much for HAProxy. It’s fantastic software and community. Could you please help me with the following? Simplified version of my current configuration: #...
View ArticleReceiving NOSRV BADREQ when discrepancy between CONNECT and Host header
Dear community, We have a haproxy 2.2.4-de45672 2020/09/30 working as a router proxy for another proxy (just for the records: a squid webproxy, but which should not matter here) Here is our haproxy...
View ArticleWeb server cannot contact backend server when using CARP
Hi, I have a website running HTTPD and node.js behind a pfSense box and I configured HAProxy to enable high availability on these servers and everything is running fine. I need now to duplicate the...
View ArticleHaproxy peers section not respecting init-addr none
Hello, it seems like the haproxy peers section is not respecting the option init-addr when starting up. If one of the servers inside the peers section is not reachable / resolvable during startup it...
View ArticlePeers not syncing
I am using a very simple peer setup in my config file, but the stick-table data does not seem to be syncing. Upon initial startup of peer1, I see (via tcpdump) a bit of traffic to peer2, but then...
View ArticleRequestURI Difference between HAP 1.7 and 2.0.8
We’ve just upgraded from HAP 1.7 to 2.0.8 and a small percentages of our requests have started failing. After a TCP Dump, we noticed that the Request URL was: GET https://redacted.host:443/...
View ArticleUse tcp backend based on map and ssl_c_s_dn
Hi all! Is it possible to use a backend based on the ssl client certificate DN? I tried it like this: use_backend %[ssl_c_s_dn,map(/etc/haproxy/backends.map)] but it seems that this lookup just...
View ArticleHow to bind a new IP address into haproxy.cfg?
Hi Guys, I have a new server and new ip address that I’d like to configure with HAproxy, here is what it looks like in haproxy.cfg: frontend my-prod-URL-https bind 10.23.12.15:443 mode tcp no log...
View ArticleClik here to view.
Could this be an HAproxy Config issue?
So, I am using Linux LXD containers. I have one container that is running nodejs and my application. Another running a simple website using nginx. And I have another container running HAproxy. I have...
View ArticleHaProxy rate limit
Hello what is the best method for rate limit for HAProxy version 2.2.2 ? There are several rate limit method :set maximim connections, sliding windows rate limiting , rate limit by fixed time window,...
View Article