HAProxy Enterprise Documentation 2.0r1

set rate-limit ssl-sessions global

Set the process-wide SSL session rate limit.

Description

By setting the global setting maxsslrate, you can limit the rate at which the load balancer creates SSL sessions. When it reaches the limit, it stops accepting new connections. In the snippet below, 1,000 SSL sessions per second are allowed:

global
   maxsslrate 1000

By default, it's set to 0, which means unlimited.

Use the set rate-limit ssl-sessions global command to change the global maxsslrate setting dynamically.

Examples

Below, we set the global SSL session rate limit to 5,000 sessions per second:

$ echo "set rate-limit ssl-sessions global 5000" |
sudo socat stdio /var/run/hapee-2.0/hapee-lb.sock

Next up

Lua