Tag Archives: release

Pen 0.34.0 released

Available here:

http://siag.nu/pub/pen/

And also here:

https://sourceforge.net/projects/penloadbalancer/files/Source/

Sander van Burken noticed that it wasn’t possible to specify a listening address
in the configuration file when using UDP: it was created as TCP even if -U was
used on the command line.

Harry G. Coin found that Pen would use the CARP address as local address in
upstream connections. An expected behaviour, but undesirable when CARP is used
with two instances of Pen. A new configuration option allows another source
address to be specified.

Vincent Bernat added support for OpenSSL 1.1.0. OpenSSL 1.0.2 is still supported.

Full list of changes:

161028 Merged pull request from Vincent Bernat for OpenSSL 1.1.0 compatibility.
This fixes issue #28.

161024 Allow setting local address for upstream connections. This fixes issue #31.
New penctl command "source" to set this option.

160914 Fixed issue #30: UDP not working in combination with a configuration file.

Facebooktwittergoogle_plusredditpinterestlinkedinmail

Pen 0.33.0 released

Available here:

http://siag.nu/pub/pen/

And also here:

https://sourceforge.net/projects/penloadbalancer/files/Source/

Pen 0.33.0 has been released. UDP streams are now treated as such and not
broken up into individual datagrams.

Issue #22 has been fixed.

Full list of changes from 0.32.0:

160407 Cleaned up code residue surrounded by “#if 0”.
Released 0.33.0.

160407 Added CS_HALFDEAD for UDP streams that haven’t seen traffic in a while.

160321 Bug in pending_and_closing: don’t modify the list we’re looping over.

160318 Updated pen manpage.
Deprecated -Q option (it didn’t do anything since kqueue was already the
default where it was available).
Fixed error handling in epoll support.

160217 Added transparent UDP test case to testsuite.sh.

160128 Contribution from Talik Eichinger: add X-Forwarded-Proto when doing
SSL decryption.

Facebooktwittergoogle_plusredditpinterestlinkedinmail

Pen 0.32.0 released

Available here:

http://siag.nu/pub/pen/

And also here:

https://sourceforge.net/projects/penloadbalancer/files/Source/

Pen 0.32.0 adds tarpit functionality to the Direct Server Return mode. The purpose of tarpitting is to make network scanning harder by producing lots of false positives.

Full list of changes from 0.31.1:

151123 Released 0.32.0.

151120 Added tarpit test case to testsuite.sh.

151117 Tarpit functionality to be used with the DSR mode.

151112 pen.1: removed obsolete -S option, updated defaults for -x and -L.

Facebooktwittergoogle_plusredditpinterestlinkedinmail

Pen 0.31.1 released

Available here:

http://siag.nu/pub/pen/

And also here:

https://sourceforge.net/projects/penloadbalancer/files/Source/

Two bugfixes. The first addresses failover, see issue #19 on Github.
The second addresses how the emergency server is used.

Full list of changes from 0.31.0:

151105 Released 0.31.1.

151103 In failover_server: sanity checks to failover routine.

151102 In add_client: add the initial server to .client as well as .initial.

151029 In failover_server: changed abuse_server to ABUSE_SERVER and emerg_server
to EMERG_SERVER, to handle their default NO_SERVER values.
See issue #19 on Github.

Facebooktwittergoogle_plusredditpinterestlinkedinmail

Pen 0.29.0 released

Available here:

http://siag.nu/pub/pen/

And also here:

https://sourceforge.net/projects/penloadbalancer/files/Source/

Pen 0.29.0 introduces transparent reverse proxying on supported platforms,
which currently means Linux, FreeBSD and OpenBSD. This allows the backend
servers to see the client’s real address. It can be used in combination
with SSL termination.

Another improvement is that the server table size is no longer fixed
at startup but grows dynamically as servers are added. The -S option is
still accepted but doesn’t do anything. The client and connection tables
can also be expanded on the fly, reducing the number of restarts.

Full list of changes from 0.28.0:

150608 Released 0.29.0.

150528 Transparent reverse proxy support for Linux, FreeBSD and OpenBSD.

150527 Allow the client table size to be updated on the fly. Default size still 2048.
Allow the connection table size to be updated in the fly. Default still 500.
See penctl.1, options clients_max and conn_max.

150526 Introduced the macro NO_SERVER to be used instead of -1 to signify
error conditions and such.
Removed the fixed server table size along with the -S option.

150525 Fixed cosmetic bug in startup code which required port to be specified
on backend servers even if it was the same as the listening port.

Facebooktwittergoogle_plusredditpinterestlinkedinmail