In order to guarantee the best performances, we prefer to unload the ACE of the SSL management.
We will therefore restart the services IMAP and POP3 on the mails.ha.
A cut off of a few seconds at maximum is to be expected.
Update(s):
Date: 2011-01-03 16:06:45 UTC We are always looking for the origin of the problem, which appears only on some very specific configurations:
IE 8, with SSL on roundcube.
Date: 2010-12-24 14:29:01 UTC The download of attachmentes via SSL on roundcube
does not work for some customers.
The download without SSL works correctly.
Date: 2010-12-22 15:21:57 UTC We have identified another problem on the base of \"sticky\" on the ACE.
Some customers launched impossible connections on pop3/imap.
The problem is now resolved, we are closely monitoring the behaviour.
Date: 2010-12-20 15:35:16 UTC The limit of the base of the \"sticky\" was reached. We increased it.
That should solve the connection problem on ns0.
Date: 2010-12-16 11:42:30 UTC We think we have found the origin of the problem: when the SSl client requests the re-negotiation of the certificate,
the connection is disrupted by the ACE, which does not authorize it.
A case example:
...
RENEGOTIATING
13713:error:1409444C:SSL routines:SSL3_READ_BYTES:tlsv1 alert no renegotiation:s3_pkt.c:1102:SSL alert number 100
13713:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:s3_pkt.c:539:
...