Thousands of SSL certificates stalls new logins during reload - problem with Dovecot config process
spi
spi at nurfuerspam.de
Sun Sep 4 05:22:34 UTC 2022
04.09.2022 01:01:16 Bartosz Kwitniewski <zerg-dovecot at uid0.pl>:
> For now they are on the same machine, we have to write our own panel for clients to get more freedom in backend choices. I was looking into HAProxy for SSL termination, but it does not support STARTTLS.
>
> I'll try to look for workaround next week, but haven't used C for ages.
>
> Best regards,
> --
> Bartosz Kwitniewski
Nginx can be used as reverse proxy for dovecot to terminate tls and load balance. It can also be used to verify client certificates (access only with valid client certificate and route access to backend based on client certificate).
Cheers,
spi
More information about the dovecot
mailing list