I'm trying to configure an Nginx 1.7.3 as a load balancer to 2 backend ADFS servers running IIS 7.5 with windows authentication. All over SSL
upstream adfsproxy {
ip_hash;
server 1;
server 2;
keepalive 16;
}
server {
listen myserver:443 ssl;
server_name adfs.mydomain;
ssl on;
ssl_certificate cert.pem;
ssl_certificate_key cert.key;
ssl_session_cache off;
proxy_ssl_session_reuse off;
proxy_buffering on;
proxy_buffers 8 16k;
proxy_buffer_size 32k;
location / {
proxy_pass https://adfsproxy;
proxy_redirect default;
#Proxy Http Version 1.1 is recommended for use with keepalive connections.
proxy_http_version 1.1;
proxy_set_header Connection "";
} #end location
} #end of server
I'm getting strange results: First time it works but if someone else tries to login they login as the first person even though they are on different pc's. Is there a better why to tdo this ? I basically just want the traffic to be pass through.
upstream adfsproxy {
ip_hash;
server 1;
server 2;
keepalive 16;
}
server {
listen myserver:443 ssl;
server_name adfs.mydomain;
ssl on;
ssl_certificate cert.pem;
ssl_certificate_key cert.key;
ssl_session_cache off;
proxy_ssl_session_reuse off;
proxy_buffering on;
proxy_buffers 8 16k;
proxy_buffer_size 32k;
location / {
proxy_pass https://adfsproxy;
proxy_redirect default;
#Proxy Http Version 1.1 is recommended for use with keepalive connections.
proxy_http_version 1.1;
proxy_set_header Connection "";
} #end location
} #end of server
I'm getting strange results: First time it works but if someone else tries to login they login as the first person even though they are on different pc's. Is there a better why to tdo this ? I basically just want the traffic to be pass through.