Current Implication of proxy protocol is not very convenient,proxy_protocol_networks is read only, so when we need deploy a proxy which not belong to proxy_protocol_networks, then we need change the server's config and restart.
And for the aspect of safety, we cannot config a big subnet, maybe just add proxy's ip to proxy_protocol_networks
proxy_protocol_networks are masks, not IP addresses, so you definitely can add a new IP as long as it is subnet conforming, and do so without a restart.
You can always add any proxy, if the value is * (not recommended, obviously)
Vladislav Vaintroub
added a comment - - edited proxy_protocol_networks are masks, not IP addresses, so you definitely can add a new IP as long as it is subnet conforming, and do so without a restart.
You can always add any proxy, if the value is * (not recommended, obviously)
In some situation, we may add more node for proxy cluster, and cannot determine which subnet of new node in advance, so need dynamic config
dapeng huang
added a comment - In some situation, we may add more node for proxy cluster, and cannot determine which subnet of new node in advance, so need dynamic config
People
Vladislav Vaintroub
dapeng huang
Votes:
0Vote for this issue
Watchers:
5Start watching this issue
Dates
Created:
Updated:
Resolved:
Git Integration
Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.
{"report":{"fcp":1194.3000000715256,"ttfb":514.3000000715256,"pageVisibility":"visible","entityId":66190,"key":"jira.project.issue.view-issue","isInitial":true,"threshold":1000,"elementTimings":{},"userDeviceMemory":8,"userDeviceProcessors":64,"apdex":0.5,"journeyId":"3e86b94c-2070-48bc-a74c-726dfba47dda","navigationType":0,"readyForUser":1297.5,"redirectCount":0,"resourceLoadedEnd":961.3000000715256,"resourceLoadedStart":521.9000000953674,"resourceTiming":[{"duration":134.79999995231628,"initiatorType":"link","name":"https://jira.mariadb.org/s/2c21342762a6a02add1c328bed317ffd-CDN/lu2bu7/820016/12ta74/0a8bac35585be7fc6c9cc5a0464cd4cf/_/download/contextbatch/css/_super/batch.css","startTime":521.9000000953674,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":521.9000000953674,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":656.7000000476837,"responseStart":0,"secureConnectionStart":0},{"duration":135,"initiatorType":"link","name":"https://jira.mariadb.org/s/7ebd35e77e471bc30ff0eba799ebc151-CDN/lu2bu7/820016/12ta74/8679b4946efa1a0bb029a3a22206fb5d/_/download/contextbatch/css/jira.browse.project,project.issue.navigator,jira.view.issue,jira.general,jira.global,atl.general,-_super/batch.css?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&slack-enabled=true","startTime":522.1000000238419,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":522.1000000238419,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":657.1000000238419,"responseStart":0,"secureConnectionStart":0},{"duration":234.29999995231628,"initiatorType":"script","name":"https://jira.mariadb.org/s/fbf975c0cce4b1abf04784eeae9ba1f4-CDN/lu2bu7/820016/12ta74/0a8bac35585be7fc6c9cc5a0464cd4cf/_/download/contextbatch/js/_super/batch.js?locale=en","startTime":522.2000000476837,"connectEnd":522.2000000476837,"connectStart":522.2000000476837,"domainLookupEnd":522.2000000476837,"domainLookupStart":522.2000000476837,"fetchStart":522.2000000476837,"redirectEnd":0,"redirectStart":0,"requestStart":660.3000000715256,"responseEnd":756.5,"responseStart":673.9000000953674,"secureConnectionStart":522.2000000476837},{"duration":389.60000002384186,"initiatorType":"script","name":"https://jira.mariadb.org/s/099b33461394b8015fc36c0a4b96e19f-CDN/lu2bu7/820016/12ta74/8679b4946efa1a0bb029a3a22206fb5d/_/download/contextbatch/js/jira.browse.project,project.issue.navigator,jira.view.issue,jira.general,jira.global,atl.general,-_super/batch.js?agile_global_admin_condition=true&jag=true&jira.create.linked.issue=true&locale=en&slack-enabled=true","startTime":522.3000000715256,"connectEnd":522.3000000715256,"connectStart":522.3000000715256,"domainLookupEnd":522.3000000715256,"domainLookupStart":522.3000000715256,"fetchStart":522.3000000715256,"redirectEnd":0,"redirectStart":0,"requestStart":661,"responseEnd":911.9000000953674,"responseStart":677.1000000238419,"secureConnectionStart":522.3000000715256},{"duration":154.29999995231628,"initiatorType":"script","name":"https://jira.mariadb.org/s/94c15bff32baef80f4096a08aceae8bc-CDN/lu2bu7/820016/12ta74/c92c0caa9a024ae85b0ebdbed7fb4bd7/_/download/contextbatch/js/atl.global,-_super/batch.js?locale=en","startTime":522.4000000953674,"connectEnd":522.4000000953674,"connectStart":522.4000000953674,"domainLookupEnd":522.4000000953674,"domainLookupStart":522.4000000953674,"fetchStart":522.4000000953674,"redirectEnd":0,"redirectStart":0,"requestStart":661.8000000715256,"responseEnd":676.7000000476837,"responseStart":675.3000000715256,"secureConnectionStart":522.4000000953674},{"duration":161,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bu7/820016/12ta74/1.0/_/download/batch/jira.webresources:calendar-en/jira.webresources:calendar-en.js","startTime":522.5,"connectEnd":522.5,"connectStart":522.5,"domainLookupEnd":522.5,"domainLookupStart":522.5,"fetchStart":522.5,"redirectEnd":0,"redirectStart":0,"requestStart":662.9000000953674,"responseEnd":683.5,"responseStart":680.5,"secureConnectionStart":522.5},{"duration":140.80000007152557,"initiatorType":"link","name":"https://jira.mariadb.org/s/b04b06a02d1959df322d9cded3aeecc1-CDN/lu2bu7/820016/12ta74/a2ff6aa845ffc9a1d22fe23d9ee791fc/_/download/contextbatch/css/jira.global.look-and-feel,-_super/batch.css","startTime":522.6000000238419,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":522.6000000238419,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":663.4000000953674,"responseStart":0,"secureConnectionStart":0},{"duration":164.10000002384186,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bu7/820016/12ta74/1.0/_/download/batch/jira.webresources:calendar-localisation-moment/jira.webresources:calendar-localisation-moment.js","startTime":522.6000000238419,"connectEnd":522.6000000238419,"connectStart":522.6000000238419,"domainLookupEnd":522.6000000238419,"domainLookupStart":522.6000000238419,"fetchStart":522.6000000238419,"redirectEnd":0,"redirectStart":0,"requestStart":663.7000000476837,"responseEnd":686.7000000476837,"responseStart":684.9000000953674,"secureConnectionStart":522.6000000238419},{"duration":227.5,"initiatorType":"script","name":"https://jira.mariadb.org/rest/api/1.0/shortcuts/820016/47140b6e0a9bc2e4913da06536125810/shortcuts.js?context=issuenavigation&context=issueaction","startTime":522.7000000476837,"connectEnd":522.7000000476837,"connectStart":522.7000000476837,"domainLookupEnd":522.7000000476837,"domainLookupStart":522.7000000476837,"fetchStart":522.7000000476837,"redirectEnd":0,"redirectStart":0,"requestStart":666.7000000476837,"responseEnd":750.2000000476837,"responseStart":747.5,"secureConnectionStart":522.7000000476837},{"duration":141.89999997615814,"initiatorType":"link","name":"https://jira.mariadb.org/s/3ac36323ba5e4eb0af2aa7ac7211b4bb-CDN/lu2bu7/820016/12ta74/d176f0986478cc64f24226b3d20c140d/_/download/contextbatch/css/com.atlassian.jira.projects.sidebar.init,-_super,-project.issue.navigator,-jira.view.issue/batch.css?jira.create.linked.issue=true","startTime":522.9000000953674,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":522.9000000953674,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":664.8000000715256,"responseStart":0,"secureConnectionStart":0},{"duration":227.5,"initiatorType":"script","name":"https://jira.mariadb.org/s/3339d87fa2538a859872f2df449bf8d0-CDN/lu2bu7/820016/12ta74/d176f0986478cc64f24226b3d20c140d/_/download/contextbatch/js/com.atlassian.jira.projects.sidebar.init,-_super,-project.issue.navigator,-jira.view.issue/batch.js?jira.create.linked.issue=true&locale=en","startTime":522.9000000953674,"connectEnd":522.9000000953674,"connectStart":522.9000000953674,"domainLookupEnd":522.9000000953674,"domainLookupStart":522.9000000953674,"fetchStart":522.9000000953674,"redirectEnd":0,"redirectStart":0,"requestStart":667.6000000238419,"responseEnd":750.4000000953674,"responseStart":748.2000000476837,"secureConnectionStart":522.9000000953674},{"duration":429.40000009536743,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bu7/820016/12ta74/1.0/_/download/batch/jira.webresources:bigpipe-js/jira.webresources:bigpipe-js.js","startTime":531,"connectEnd":531,"connectStart":531,"domainLookupEnd":531,"domainLookupStart":531,"fetchStart":531,"redirectEnd":0,"redirectStart":0,"requestStart":948.1000000238419,"responseEnd":960.4000000953674,"responseStart":959.5,"secureConnectionStart":531},{"duration":427,"initiatorType":"script","name":"https://jira.mariadb.org/s/d41d8cd98f00b204e9800998ecf8427e-CDN/lu2bu7/820016/12ta74/1.0/_/download/batch/jira.webresources:bigpipe-init/jira.webresources:bigpipe-init.js","startTime":534.3000000715256,"connectEnd":534.3000000715256,"connectStart":534.3000000715256,"domainLookupEnd":534.3000000715256,"domainLookupStart":534.3000000715256,"fetchStart":534.3000000715256,"redirectEnd":0,"redirectStart":0,"requestStart":948.8000000715256,"responseEnd":961.3000000715256,"responseStart":960.7000000476837,"secureConnectionStart":534.3000000715256},{"duration":106.70000004768372,"initiatorType":"xmlhttprequest","name":"https://jira.mariadb.org/rest/webResources/1.0/resources","startTime":883,"connectEnd":883,"connectStart":883,"domainLookupEnd":883,"domainLookupStart":883,"fetchStart":883,"redirectEnd":0,"redirectStart":0,"requestStart":957.6000000238419,"responseEnd":989.7000000476837,"responseStart":988.9000000953674,"secureConnectionStart":883},{"duration":128.09999990463257,"initiatorType":"xmlhttprequest","name":"https://jira.mariadb.org/rest/webResources/1.0/resources","startTime":1149.9000000953674,"connectEnd":1149.9000000953674,"connectStart":1149.9000000953674,"domainLookupEnd":1149.9000000953674,"domainLookupStart":1149.9000000953674,"fetchStart":1149.9000000953674,"redirectEnd":0,"redirectStart":0,"requestStart":1244.2000000476837,"responseEnd":1278,"responseStart":1277.3000000715256,"secureConnectionStart":1149.9000000953674},{"duration":87.70000004768372,"initiatorType":"script","name":"https://www.google-analytics.com/analytics.js","startTime":1187.6000000238419,"connectEnd":0,"connectStart":0,"domainLookupEnd":0,"domainLookupStart":0,"fetchStart":1187.6000000238419,"redirectEnd":0,"redirectStart":0,"requestStart":0,"responseEnd":1275.3000000715256,"responseStart":0,"secureConnectionStart":0}],"fetchStart":0,"domainLookupStart":324,"domainLookupEnd":332,"connectStart":332,"connectEnd":352,"secureConnectionStart":341,"requestStart":353,"responseStart":514,"responseEnd":534,"domLoading":518,"domInteractive":1350,"domContentLoadedEventStart":1350,"domContentLoadedEventEnd":1395,"domComplete":1628,"loadEventStart":1628,"loadEventEnd":1628,"userAgent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)","marks":[{"name":"bigPipe.sidebar-id.start","time":1331.2000000476837},{"name":"bigPipe.sidebar-id.end","time":1332},{"name":"bigPipe.activity-panel-pipe-id.start","time":1332.2000000476837},{"name":"bigPipe.activity-panel-pipe-id.end","time":1333.4000000953674},{"name":"activityTabFullyLoaded","time":1413.5}],"measures":[],"correlationId":"e6e29d231e20f6","effectiveType":"4g","downlink":9.5,"rtt":0,"serverDuration":95,"dbReadsTimeInMs":17,"dbConnsTimeInMs":24,"applicationHash":"9d11dbea5f4be3d4cc21f03a88dd11d8c8687422","experiments":[]}}
Task
Major
MXS-1551 Ip white list for proxy
proxy_protocol_networks are masks, not IP addresses, so you definitely can add a new IP as long as it is subnet conforming, and do so without a restart.
You can always add any proxy, if the value is * (not recommended, obviously)