![]() One extra numberĪppears after these digits to indicate the bug fix release. The first digit usually indicates aīreaking change (config format etc) but in practice rarely changes. Two major version are emitted every year. The HAProxy core team maintains multiple versions in parallel. Since it does not advertise itself, we only know it's ![]() Now shipped with most mainstream Linux distributions, and is often deployed byĭefault in cloud platforms. Over the years it has become the de-facto standard opensource load balancer, is High traffic web sites and powers a significant portion of the world's most visited ones. Proxying for TCP and HTTP-based applications. HAProxy is a free, very fast and reliable reverse-proxy offering Please see the announnce for more details and/or consult the HAProxyTech blog article for more details. 2.7 provides traffic shaping, many QUIC improvements, eases the switch to alternate SSL libraries, and improves user experience with everything related to troubleshooting and issue reporting. HAProxy 2.7.0 is now released and available for download, opening the way to 2.8-dev. Please make sure to update either to your latest distro package or to latest version It affects all currently supported branches, all the details are here on the mailing list announce. We've been notified of a vulnerability in HAProxy that can be exploited to build some request smuggling attacks. ![]() For more details, please have a look at the full article on HAProxyTech's blog and the more synthetic mailing-list announcement.įebruary, 14th, 2023 : CVE-2023-25725 fixed! At the most visible layers, QUIC is now considered production ready after having been running on this site for more than a year and with no glitch since 2.7 was released SSL got new improvements with a much better LetsEncrypt integration, wolfSSL support and OCSP automatic updates RFC7239 ("forwarded") is supported both in processing and generation listeners can now span multiple thread groups, setting a new limit of 4096 threads (let's hope we won't have to raise that one in the next two decades). ![]() A lot more details are explained on the HAProxyTech's blog, and the mailing-list announcement summarizes most of these at a higher level.ĭuring the development cycle of this new LTS release, behind the curtains the focus was mostly set on all the stuff that can improve the reliability, observability and troubleshooting in field, in a quest to further reduce the number of problem reports. Most of them were aimed at improving performance and resource usage in general (zero-copy forwarding, QUIC's smaller footprint for closed connections, improved scalability), others focusing on better integration with other components (support for the AWS-LC crypto library, QUIC OpenSSL compatitility layer, PROXY protocol manipulation), ease of configuration (most log-format tags now have an equivalent sample fetch, some converters support variables in addition to integers, warnings about bad cpu-map or thread settings), more reliability (log backends with checked servers, better debugging), and a really cool new feature to play with, reverse-http. This release has received a lot of small changes that are difficult to summarize. Quick News Dec, 5th, 2023 : HAProxy 2.9.0 release Site served using: HTTP version: Transport: Network: Note: HTTP 2 & 3 require HTTPS Your computer is not IPv6-ready TCP/HTTP Load Balancer HAProxy The Reliable, High Performance TCP/HTTP Load Balancer
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |