Wensong Zhang <wensong@xxxxxxxxxxxx> said:
> I tested LVS with servers running Apache-SSL.
> LVS uses the VS patch for kernel 2.2.9, and uses
> the PCC scheduling. It worked without any problem.
However, this was not the point why SSL needs special support.
Obviously, anything which is based on a TCP connection from the client to the
server will most likely work very well.
It is just that we can use the SSL session ID to do better than that and
separate the requests all comeing in from the same proxy into multiple
sessions and schedule them to different machines, so not all of aol.com hits
a single https server.
Mind you I have no idea how to implement this, since this would require the
load balancer to do scheduling based on in-band data, which we currently don't
do at all, do we?
teuto.net Netzdienste GmbH - DPN Verbund-Partner