Re: LVS HTTPS SSL and Squid

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: LVS HTTPS SSL and Squid
From:	Horms <horms@xxxxxxxxxxxx>
Date:	Tue, 9 Aug 2005 10:29:11 +0900

On Mon, Aug 08, 2005 at 12:36:58PM -0700, Joseph Mack NA3T wrote:
> On Mon, 8 Aug 2005, Brad Taylor wrote:
> 
> >Yes, a couple times and I understand parts of it but still getting a
> >little confused. Doesn't seem to really answer the question below, but
> >maybe I'm missing something?
> 
> just wanted to make sure. The situation isn't clear AFAIK 
> either. It's not like it comes up a lot and we've got it 
> down pat. Horms probably has the clearest point on the 
> matter which is not to have a separate SSL engine but to 
> have each realserver do its own decrypting/encrypting.
> 
> (I haven't done any of this myself.)

Here is a descrition I wrote a while ago about SSL/LVS
In a nutshell, you probably want to use persistance
and have the real-servers handle the SSL decryption.

http://archive.linuxvirtualserver.org/html/lvs-users/2003-07/msg00184.html

-- 
Horms

<Prev in Thread]	Current Thread	[Next in Thread>
LVS HTTPS SSL and Squid, Brad Taylor Re: LVS HTTPS SSL and Squid, Joseph Mack NA3T RE: LVS HTTPS SSL and Squid, Brad Taylor RE: LVS HTTPS SSL and Squid, Joseph Mack NA3T RE: LVS HTTPS SSL and Squid, Graeme Fowler Re: LVS HTTPS SSL and Squid, Horms <= Re: LVS HTTPS SSL and Squid, Horms Re: LVS HTTPS SSL and Squid, Graeme Fowler Re: LVS HTTPS SSL and Squid, Horms

Previous by Date:	Re: LVS HTTPS SSL and Squid, Horms
Next by Date:	Re: [RFC PATCH] Using LVS as a way to provide load-balanced internet, Horms
Previous by Thread:	RE: LVS HTTPS SSL and Squid, Graeme Fowler
Next by Thread:	Re: LVS HTTPS SSL and Squid, Horms
Indexes:	[Date] [Thread] [Top] [All Lists]