HAproxy is a high-performance and highly-robust TCP and HTTP load balancer which provides cookie-based persistence, content-based switching, SSL off-loading, advanced traffic regulation with surge protection, automatic failover, run-time regex-based header control, Web-based reporting and management interface, advanced logging to help trouble-shooting buggy applications and/or networks, and a few other features. Its own event-driven state machine achieves 100,000 connections per second and surpasses GigaEthernet on modern hardware, even with tens of thousands of simultaneous connections.
|Tags||Networking Internet Web|
|Operating Systems||POSIX Linux BSD OpenBSD Solaris|
Release Notes: Four important issues were fixed since dev24 (crashes on out-of-memory, crashes on FreeBSD when using a shared session cache, pauses in HTTP request body transfers when using the balance url_param, and the arguments "-i" and "-n" being ignored on ACLs since dev23). Some pending changes were completed, as well. Half-closed timeouts and server-side Unix sockets are now supported. Per-listener process binding is finally possible using the "process" keyword on "bind" lines, which makes it possible to have one stats socket per process. Version 2 of the PROXY protocol was implemented on the server side.
Release Notes: This version fixes three major regressions: truncated transfers, crashes on certain redirects, and an SSL slowdown. Other minor issues were fixed as well. The stats page now supports chunked mode, keep-alive, and compression. Health checks can be started within a smaller delay. http-request/response now support set-map/del-map/add-acl/del-acl to add/remove pattern entries to maps and ACLs on the fly based on data extracted from the traffic. Heartbleed attacks (CVE-2014-0160) are detected and blocked even on vulnerable OpenSSL implementations.
Release Notes: This new version addresses half of the remaining changes before -final. use_backend now supports log-format expressions. Maps and ACLs now share the same pattern lists which are dynamically updatable from the CLI. SSL supports ALPN and Web sites now load faster thanks to dynamic record size adjustments. Compression of chunked HTTP responses was fixed and enabled again. Other minor features were added and about 35 bugs were fixed.
Release Notes: Two major changes: a rework of the whole polling system to implement a real event cache, and HTTP keep-alive is now enabled by default, so users will no longer be confused by the tunnel mode. Other nice updates include SSL handshake optimizations, more debugging info on the stats socket, the ability to rate-limit SSL to protect the resources, sample fetches to retrieve captured headers, automatic stickiness to the same server after 401/407, and the new "tcp-check connect" directive to check multiple ports on a server. 32 bugs were fixed since dev21.
Release Notes: This release fixes a few annoying bugs. Use this version instead of 1.5-dev20 to be safe.