ENVOY Proxy versus Loadbalancer.org: Why storage vendors need purpose-built load balancing for S3, NFS, and SMB
Envoy was never optimized for sustained, high-throughput, state-aware storage traffic across multiple protocols simultaneously...
Using client certificates for security is a pretty cool idea! You can protect an entire application or even just a specific Uniform Resource Identifier (URI) to only those that provide a valid client certificate...
How frustrating do you find it when hackers or robots fill in your website forms with "Buy Viagra Now!" type spam?..
In part one we were introduced to Polaris-GSLB which is a cool little open source GSLB solution. In part two of this Blog I’m going to show you how to build Polaris-GSLB on CentOS 7...
Here at Loadbalancer.org we’re not known for being huge fans of GSLB solutions as some of our customers may already know...
The Web Application Firewall is based on ModSecurity which is an open source WAF for Apache, IIS, and Nginx for protecting against a many variety of attacks and allows for HTTP traffic monitoring and logging...
HAProxy is an excellent choice if you need layer 7 functionality, but its a full reverse-proxy, so the application thinks that all of the traffic is coming from HAProxys IP - rather than the clients...
Once HAProxy is running transparently, it will allow the real server to see the client IP so the real server will reply directly back to the client bypassing the load balancer...
Anomaly score based blocking is more flexible and effective than simple first error blocking...
One of our favorite methods of load balancing is using Layer 4 DR because it is transparent and fast. Unfortunately, because of Amazon's infrastructure, this is not possible in EC2 so we need to use another method which means we are left with layer 4 NAT and transparent HAproxy using TProxy...
Denial of Service (DOS) attacks can be used to degrade or cripple the functionality of a site...
By default, the source IP address of the packet reaching the web servers is the IP address of the load balancer and not the IP address of the client...
There are a lot of SSL offload throughput statistics available for appliances across the internet but rarely do they detail the way they were tested...