From Stavros.Charalambous at spidernet.com Fri Apr 24 12:48:25 2009 From: Stavros.Charalambous at spidernet.com (Stavros Charalambous) Date: Fri, 24 Apr 2009 15:48:25 +0300 Subject: HTTPS and LVS In-Reply-To: <20090311160035.79A208E04D7@hormel.redhat.com> References: <20090311160035.79A208E04D7@hormel.redhat.com> Message-ID: Stavros Charalambous MCSE CCNP Senior Systems Engineer Network Operations Center SpiderNet Services Ltd Tel: +357 22 844 844 Fax: +357 22 844760 I have tried to go live today with HTTPS in Piranha with lvs, and have failed miserabled. HTTP seems to work fine though. Is there any specific procedure for this? Stavros From lists at brimer.org Fri Apr 24 12:54:37 2009 From: lists at brimer.org (Barry Brimer) Date: Fri, 24 Apr 2009 07:54:37 -0500 (CDT) Subject: HTTPS and LVS In-Reply-To: References: <20090311160035.79A208E04D7@hormel.redhat.com> Message-ID: > I have tried to go live today with HTTPS in Piranha with lvs, and have > failed miserabled. > > HTTP seems to work fine though. Is there any specific procedure for > this? You might comment out the send and expect lines in your lvs.cf file for the https virtual servers. Instead of getting checked with actual requests, it should be checked whether in can open a generic tcp connection to your https service. The better answer is to use a send_program .. which you can use a script the calls wget/lynx/links to do an actual https request to see if the https service works correctly, instead of just seeing if a connection can be opened. Barry From rhurst at bidmc.harvard.edu Fri Apr 24 13:09:25 2009 From: rhurst at bidmc.harvard.edu (Robert Hurst) Date: Fri, 24 Apr 2009 09:09:25 -0400 Subject: HTTPS and LVS In-Reply-To: References: <20090311160035.79A208E04D7@hormel.redhat.com> Message-ID: <1240578565.3462.5.camel@WSBID06223.bidmc.harvard.edu> In our lvs.cf, we have these attributes set in our https service: expect = "200 OK" use_regex = 0 send_program = "/usr/local/sbin/check_hrms_ssl.sh %h 8443" I crafted this script to check for https availability: # cat /usr/local/sbin/check_hrms_ssl.sh #!/bin/bash HOST=$1 PORT=$2 wget --no-check-certificate --spider -q https://${HOST}:${PORT} && echo "200 OK" || echo "404 Not Found" exit 0 ________________________________________________________________________ Robert Hurst, Sr. Cach? Administrator Beth Israel Deaconess Medical Center 1135 Tremont Street, REN-7 Boston, Massachusetts 02120-2140 617-754-8754 ? Fax: 617-754-8730 ? Cell: 401-787-3154 Any technology distinguishable from magic is insufficiently advanced. On Fri, 2009-04-24 at 08:48 -0400, Stavros Charalambous wrote: > > > Stavros Charalambous > MCSE CCNP > > Senior Systems Engineer > Network Operations Center > SpiderNet Services Ltd > > Tel: +357 22 844 844 > Fax: +357 22 844760 > > > I have tried to go live today with HTTPS in Piranha with lvs, and > have failed miserabled. > > HTTP seems to work fine though. Is there any specific procedure for > this? > > Stavros > > _______________________________________________ > Piranha-list mailing list > Piranha-list at redhat.com > https://www.redhat.com/mailman/listinfo/piranha-list > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: