By the looks of things, if the application is redirecting to /wfc that's not working, your application doesn't seem to accept that as a valid. The Squid cache is returning a miss and so it is hitting the backend and getting a 404 from there it seems. /wfc/ with a trailing slash does work however, so this looks like an issue with the IIS configuration to me. Also, this is a login form, I'd recommenby rick_pri - Nginx Mailing List - English
It doesn't actually redirect to /wfc/ though, or rather your log lines show a 404 at /wfc Also, your log line says /wfc/logon not /wfc/htmlnavigator/logon GET /wfc GET /wfc/logon GET /wfcstatic/applications/wpk/html/scripts/cookie.js?version=8.1.6.2032 On Tue, 2020-01-28 at 14:03 +0000, Johan Gabriel Medina Capois wrote: Sure. The problem is that we have an backend applicationby rick_pri - Nginx Mailing List - English
We recently noticed this on our servers and we were using USR1 for postrotation which wasn't working as expected. We changed the post rotation command to be HUP and this fixed the issues of rotation being borked. http://nginx.org/en/docs/control.html It says that USR1 should reopen logfiles after they have been renamed but we found that this didn't workby rick_pri - Nginx Mailing List - English
Hi Jeff, This is pretty much what I'm now looking at doing, with Some HA proxy servers behind the External Google LB and then their backend being an internal Google LB which then balances across our Varnish caching layer and eventually the Nginx app servers. Thank you for sharing your config it'll be a good base for us to start from. We moved from AWS for cost/performance reasons but also beby rick_pri - Nginx Mailing List - English
And having looked at this further we would have to append the key to the end of the certificate bundle after it was issued from LE as an extra step in the processing so that this could work. This still seems to be the best way forward, even if it requires an extra step in this case. Kind regards, Richard On Tue, 2019-02-12 at 09:56 +0000, Richard Paul wrote: Hi Lucas, Well that looksby rick_pri - Nginx Mailing List - English
Hi Lucas, Well that looks great. I've not looked at HAproxy too much, as I've not used it before other than during a switch over just prior to Christmas last year where rinetd couldn't cope with the incoming traffic load and we had to cobble together a quick HAProxy layer 4 configuration to redirect traffic from AWS to GCP. I'll start digging into this a bit more as this looks like a betterby rick_pri - Nginx Mailing List - English
Hi Anoop, This is great and really valuable information, thank you. . I'd heard that CloudFlare use a variant of Nginx for providing SSL termination which was why I was hopefully that it would be able to manage our use case. Kind regards, Richard On Tue, 2019-02-12 at 07:31 +0530, Anoop Alias wrote: I maintain an Nginx config generation plugin for a web hosting control panel, where pby rick_pri - Nginx Mailing List - English
Hi Peter, I'm sure that it's great and all, but I've just been to look at the https://openresty.org/en/installation.html page for the installation again and it's very much not friendly for configuration management unless you're on a supported platform with packages available to you. I'm sure that we could put together a poudriare server to do the package building from source/ports for FreeBSD bby rick_pri - Nginx Mailing List - English
Hi Andreas, Good to hear that this is scaling well for you at this level. With regards to reload, you mean a reload rather than a restart I take it? We'll be load balanced and building these from config and deployment management systems so a long reload/restart is not the end of the world as we can build a patched box and take out an old unpatched machine. Kind regards, Richard On Monby rick_pri - Nginx Mailing List - English
Hi Jeff That's interesting, how do you manage the progamming to load the right certificate for the right domain coming in as the server name? We need to load the right certificate for the incoming domain and the 12000 figure is the number of unique vanity domains without the www. subdomains. We're planning to follow the same path as you though, we're essentially putting these Nginx TLS termiby rick_pri - Nginx Mailing List - English
Hi Robert, I've not looked in a while but I think that there where some large assumptions in openresty that you are running on Linux. I'll have a look again but it might not quite be a good fit for us. Kind regards, Richard On Mon, 2019-02-11 at 10:34 -0800, Robert Paprocki wrote: FWIW, this kind of large installation is why solutions like OpenResty exist (providing for dynamic config/cby rick_pri - Nginx Mailing List - English
Hi Ben, Thanks for the quick response. That's great to hear, as we'd only get to find this out after putting rather a lot of effort into the process. We'll be hosting these on cloud instances but since those aren't the fastest machines around I'll take the reloading as a word of caution (we're probably going to have to make another bit of application functionality which will handle this so thaby rick_pri - Nginx Mailing List - English
Our current setup is pretty simple, we have a regex capture to ensure that the incoming request is a valid ascii domain name and we serve all our traffic from that. Great ... for us. However, our customers, with about 12000 domain names at present have started to become quite vocal about having HTTPS on their websites, to which we provide a custom CMS and website package, which means we're aboby rick_pri - Nginx Mailing List - English