On Tue, May 25, 2010 at 10:29 AM, Jose Negreira <negreira(at)gmail.com>
wrote:[...][...]
>>> From: Jose Negreira [mailto:negreira(at)gmail.com]
>>> Sent: Monday, May 24, 2010 6:22 PM
>>> To: pound(at)apsis.ch
>>> Subject: [Pound Mailing List] http header 2048 bytes certificate
>>> truncated by pound
>>>
>>> Hi
>>> we are from Galicia, a region in northwest of Spain.
>>> We are using pound balancer and I would like to subscribe the
>>> mailinglist
>>> in order to try to get some help with http header certificates
through
>>> pound.
>>>
>>> In our tests it seems certificates of 2048 bytes (like id card
from
>>> Spain)
>>> are trucated when passing through pound (lost 53 bytes) at http
header.
>>> Pound is listening just http, no https.
>>> Other http header certificates (of 1024 bytes long) goes through
pound
>>> without problem.
>>> If I remove the pound between apache and backend, 2048 bytes
>>> certificates then work.
>>>
>>> the configuration is simply:
>>>
>>> #balancer for webspace
>>> ListenHTTP
>>>           Address localhost
>>>           Port    50328
>>>           Service
>>>                   BackEnd
>>>                       Address 10.61.10.53
>>>                       Port    28082
>>>                       Timeout 180
>>>                       Priority 5
>>>                   End
>>>                   Emergency
>>>                       Address 10.61.10.63
>>>                       Port    28082
>>>                   End
>>>           End
>>> End
>>>
>>>
>>> many thanks in advance
>>>
>>> Jose Negreira
>>> Xunta de Galicia
>>> Spain
>>>
>>> --
>>> To unsubscribe send an email with subject unsubscribe to
>>> pound(at)apsis.ch.
>>> Please contact roseg(at)apsis.ch for questions.[...][...]

Hi
the problem was the problematic pound be an old version (v2.1 on redhat).
The Solaris version (v2.4.4) works fine with the 2048Kbytes certificate.
So, the solution is an unpgrade.

bye