CloudFlare 522 and HAproxy

theap · July 26, 2022, 1:15pm

Hello,

We use schema:

CloudFlare → HAProxy v.2.4.8 → Nginx-> Tomcat → Application

Sometimes we see error 522 with our clients. Connection cannot be established. From the CF logs it is clear that the connection breaks for 15 seconds https://support.cloudflare.com/hc/en-us/articles/115003011431-Troubleshooting-Cloudflare-5XX-errors#522error

Before a connection is established, the origin web server does not return a SYN+ACK to Cloudflare within 15 seconds of CloudFlare sending a SYN.

What logging for haproxy can be enabled to determine the cause. Is it internet packet loss or something else?

Thanks

simplexion · July 27, 2022, 11:25pm

Why do you have an nginx server in the mix? I’d move that out the way and try again. I have an Apache Guacamole setup like this where the traffic flows like:

Cloudflare → HAProxy → Tomcat → Application

It works perfectly.

theap · July 28, 2022, 7:36am

It was built before me. I don’t have an answer to that question. But your experience is interesting. We have this problem mainly from India. I suppose that sometimes for some reason the handshake becomes very slow.

Topic		Replies	Views
Prevent HTTP 520 from Cloudflare Help!	0	204	May 26, 2023
HAProxy high connection resets using proxy protocol Help!	1	1054	September 11, 2017
HAProxy closing connections too soon for my application? Help!	0	360	December 31, 2022
[ Closed ] Connection Dropping Issue in SSL Backend with TCP Mode Help!	5	6751	March 23, 2017
"SSL handshake failures" on big amount of requests Help!	3	8246	June 1, 2017

CloudFlare 522 and HAproxy

Related Topics