Clik here to view.
How to compile with USE_OPENSSL=1
1.download lastest release 2.make TARGET=linux-glibc USE_OPENSSL=1 3.and then there is some error my system is debian 11 i saw some solution at centos but not debian 1 post - 1 participant Read full...
View ArticleLog ldap query or bind
Hi, I balanced the ldap service, I would like, if possible, to log ldap queries using HAproxy’s tcp-request capture, has anyone done anything about this yet? Thank you. 1 post - 1 participant Read...
View ArticleHAPRoxy 2.4 not blocking TLSv1.0,1.1 in TCP connections
Security Fault Testing with openssl and nmap tools the TLSv1 and 1.1 are yet enabled int the Ports TCP mode altough the sslMinVersion and sslMaxVersion 1.2 clause is applied in haproxy.cfg. Seems to...
View ArticleTwo Backend behind haproxy
We have two server behind haproxy one of this servers has resource issue and take time to do some process and send feedback to haproxy and haproxy answer request. other server in backend is OK, and...
View ArticleDisable "defaults" section
from this page: https://www.haproxy.com/documentation/hapee/latest/configuration/config-sections/defaults/ If a frontend, backend, or listen section does not indicate a named defaults section using...
View ArticleSSL haproxy to apache2
Hello everyone I think I made a mistake in my haproxy configuration and I don’t see how to modify it without interrupting the service. I have a haproxy configured to forward the stream to multiple...
View ArticlePreventing proliferation of sticky session cookies with multiple backends
Hi, We have an HAProxy setup with many (10s if not 100s) backends for one frontend, with at least 2 servers per backend. We are using cookies for sticky sessions to tie clients to a particular server...
View ArticleDoes HAProxy support 'raw' QUIC and/or WebTransport?
I understand QUIC support for HTTP/3 has been added in the last few releases 2.6 → 2.8. However, I am curious about a couple of different QUIC related use cases. Can HAProxy be used to load balance...
View ArticleLayer 7 DDos and Reverse Proxy
Hello, I did the discourse setup on a VPS. I want to put a HAProxy in front of the VPS to prevent Layer 7 ddos attacks and hide the original ip address. The HAProxy layer 7 I will put in front of the...
View ArticleExample: Accessing request attributes (body, headers)
Similar to Reflect back to the client their IP address, we have a use case where we need to be able to see specific attributes of the incoming request. Mainly: the request body. Some of our customers...
View ArticleExtracting and Validating MQTT Connection Parameters from CONNECT Packet in...
Hello, I have a setup in which I use HAProxy to load balance MQTT requests sent via web sockets. I am currently seeking guidance on how to effectively extract and validate MQTT connection parameters...
View ArticleStrange behavior observed with SNI
Hi all, I have a server with Haproxy CE 2.5.9 and one public IP address. Instead of using multiple IPs for my three differents domains, I used SNI in my configuration as described here : Enhanced SSL...
View ArticleCa-file: unable to load ca-certificates.crt file /var/run/admin.sock
Hi, When I tried to add a server to haproxy using runtime api I was getting ca-file: unable to load ca-certificates.crt . I have tried to add the server to the haproxy using the below runtime api...
View ArticleClik here to view.
HAproxy SMTP mail config
Hi all. Love HAproxy, I use it a lot I am playing with trying to make my exim4/dovecot SMTP server HA (rather active-backup for now) and I am looking for the advices. This configuration bellow works,...
View ArticleHaproxy stats using password file
I am working on a project where I have successfully implemented an HAProxy stats page that requires a password for access. I have achieved this by reading the password from a file, and the stats page...
View ArticleHAProxy proxyingto wrong IP
Having the weirdest issue with HAProxy… this is an example front/backend I have: # telnet frontend fe-telnet bind :::23 bind :23 default_backend be-telnet backend be-telnet stick-table type ip size...
View ArticleConfiguring haproxy to access a protected url
Hello, I need some help. I don’t know if Haproxy allows me to do what I want, but I’ll give you some context. I have 30 game rooms that need to access a URL protected by ip whitelisting. For technical...
View ArticleClik here to view.
HAProxy Integration for JWT Token-Based MQTT Authentication in IoT Scenario
Hello, I am working on implementing an IoT scenario where client devices send MQTT messages to MQTT brokers via the WebSocket protocol. In this setup, the client devices provide JWT tokens, and the...
View ArticleHaProxy: errorfile : error opening file ‘/etc/haproxy/errors/404.http’
Operating System: openSUSE Leap 15.4 KDE Plasma Version: 5.24.4 KDE Frameworks Version: 5.90.0 Qt Version: 5.15.2 Kernel Version: 5.14.21-150400.24.81-default (64-bit) Graphics Platform: X11...
View ArticleClik here to view.
HAproxy reached system memory limit at 98438 sockets
…Please check system tunables. anyone have a clue exactly what tunable(s) is to be tweaked? I seem to fail finding info in the documentation about this 1 post - 1 participant Read full topic
View Article