I think you can use -m state --state ESTABLISHED,RELATED to match existing tcp f... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

toong on April 14, 2015 | parent | context | favorite | on: True Zero-Downtime HAProxy Reloads

I think you can use -m state --state ESTABLISHED,RELATED to match existing tcp flows.

But that builds on conntrack, you could get in trouble if this HA proxy is public facing and handles a gazillion requests ?

atombender on April 14, 2015 [–]

Probably, but realistically, it's probably fine for most shops.

toong on April 14, 2015 | [–]

Most shops don't handle a gazillion requests. And if you don't handle a gazillion requests, you don't really care about 20ms downtime while HA proxy is reloading ?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact