| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
| Who | What | When |
|---|---|---|
| qbit | any eta on getting more dedis? | [08:31] |
| ....................... (idle for 1h53mn) | ||
| brycec | Wasn't the ETA yesterday? :P
up_the_irons? toeshred? | [10:24] |
| toeshred | they are no longer on hold as far as i know. but i would still check with up_the_irons to confirm. | [10:29] |
| .... (idle for 15mn) | ||
| brycec | Thanks toeshred :)
I figured the guy to [probably] rack them would know ;) | [10:44] |
| ...... (idle for 29mn) | ||
| qbit | rackin n stakin!
pepwepwpp | [11:14] |
| ........... (idle for 52mn) | ||
| up_the_irons | yeah the sold out sign is no longer there | [12:06] |
| ..... (idle for 23mn) | ||
| brycec | qbit: ^ | [12:29] |
| qbit | oh sweet
i was waiting for a button to show up ?:D s/?// | [12:29] |
| ................................. (idle for 2h41mn) | ||
| jpalmer | question for you guys. I'm giving a presentation on HAProxy to a local group in october. I kinda want to have a little bit in there for everyone, basic to advanced. the time slot is flecible between 45 - 90 minutes. what kinds of things would YOU guys be interesting in knowing?
for basic stuff, I was planning on going over stats, load balancing, how it does "HA" and health checks for backend servers. for more advanced, I'd like to cover throttling, DDoS, network/latency diagnostics, load balancing things like mysql, redis, postgres, openvpn, etc. eliminating haproxy as a spof.. those kinds of things.. oh, ssl termination, and http vs tcp mode. that'll be towards the end of the beginner part. along with the different (and most common) LB algorithms. | [15:10] |
| mercutio | what about intermittent problems, fault-finding
caveats etc. usually the simple getting things to work stuff is more obvious | [15:17] |
| jpalmer | well, the biggest troubleshooting section was going to be on network issues/latency, and how to use haproxy to determine where the fault it. is that what you were thinking, or something else? | [15:18] |
| mercutio | well haproxy is going to multiple servers, right?
so servers could be hitting issues that the other server isn't hit | [15:19] |
| jpalmer | in theory, yes | [15:19] |
| mercutio | with pages half-loading sometimes etc. | [15:19] |
| jpalmer | certainly | [15:19] |
| mercutio | aand health checks might not notice such properly.
so knowing where a problem lays.. | [15:19] |
| jpalmer | well, the part about health checks, I'm actually going to cover "full stack" checks. | [15:20] |
| mercutio | i assume it adds something to the headers saying what server it hit | [15:20] |
| jpalmer | it does, in the logs | [15:20] |
| mercutio | i haven't used haproxy.
i like the idea of ssl termination with distant locations though preferably with spdy/http2 | [15:20] |
| jpalmer | so yeah, sounds like you'de be interested in the health checks portion. that is where I'm intending to mention.. you COULD just have it check if a port is open and responding. or.. lets say in a lamp environment, you write a small php script to query a DB, and return a result. if the result isn't what you expect, the chack fails and the server is removed from the pool | [15:21] |
| mercutio | yeah i prefer the php script to query db
is there some kind of failover server too? | [15:22] |
| jpalmer | for the advanced stuff, would you be at all interested in SSL/TLS stuff, like.. SHA1/SHA2 certs, wildcards, various ciphersuites? etc | [15:23] |
| mercutio | so if web site has too many problems in general can point to down for maintenance page temporarily and alert.
multi-site ssl | [15:23] |
| jpalmer | cuz part of me wants to cover that, and part of me thinks it's outside the scope of an haproxy talk. to just mention at high level that haproxy can handle the SSL termination, alloiwing you to manage it on a small number of frontends, instead of the dozens or hundreds of backends that you have | [15:24] |
| mercutio | yaeh i think it's outside of scope
to go into detail can it do multisite ssl? | [15:24] |
| jpalmer | ooh, yes. I should absolutely cover a way to let users know all backends are down or something, and how to fail over to backup servers, or return an "under maintenance" page. good call.
yes, multisite SSL | [15:25] |
| mercutio | can it do name-only multisite ssl?
or do they need extra ip's? | [15:25] |
| jpalmer | it does SNI | [15:25] |
| mercutio | cool. | [15:25] |
| jpalmer | jpalmer is updating his asana tasks with the advanced health checks, high level SSL stuff, and using a backup server or under maintenance page. | [15:26] |
| mercutio | i thikn generally for talks for me it's about seeing what's possible
not about how to implement/do things. so for me i see it was a way to get a nice overview and get me thinking of other ways of doing things. | [15:26] |
| jpalmer | yeah, I think for the basic part, I'll do a demonstration showing the very basics. for the advanced stuff, I'll turn off the slides and just talk. let them know what the possibilities ARE, rather than how to specifically do them. | [15:27] |
| mercutio | and when people go into details too much from questions, or during their talk i kidn of tune out, UNLESS it's something of biting significance
say like BGP route limits. i wonder if you should also mention otehr solutions and what made you pick haproxy over them | [15:28] |
| jpalmer | hehe that is almost always how I start a presentation ;) | [15:29] |
| mercutio | cool | [15:29] |
| jpalmer | "this isn't the only tool, and I'm certainly not saying it's the best tool. However it's the tool I chose, for my use-case, and here are a few reasons why" | [15:30] |
| mercutio | yip
yeah i've never seen any of your talks so i don't have anything to go on :) | [15:30] |
| jpalmer | (in this, haproxy won out over using nginx or apache, for 2 primary reasons. #1) TCP mode, and #2) sheer performance. | [15:31] |
| mercutio | i like trafficserver myself | [15:31] |
| jpalmer | no worries, I appreciate the suggestions regarldess :) | [15:31] |
| mercutio | it can do http2 termination now too :) | [15:31] |
| jpalmer | I used trafficserver years ago, haven't touched it in a while
brb, I need to feed some horses. thanks for the input. | [15:31] |
| mercutio | all good. | [15:32] |
| .... (idle for 19mn) | ||
| m0unds | http://blogs.windows.com/buildingapps/2015/08/06/windows-bridge-for-ios-lets-open-this-up/ | [15:51] |
| ........ (idle for 35mn) | ||
| *** | neish_ has quit IRC (Read error: Connection reset by peer)
neish has joined #arpnetworks | [16:26] |
| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |