When is an ACL not an ACL? When it's an HAProxy ACL...
If you're from a network background or are of a certain age (or both!), you will have come across Access Control Lists or ACLs...
Dive into the world of open source HAProxy with configurations, tutorials, and best practices. As a core component of our Layer 7 solution, learn to master ACL rules, reverse proxy, SSL termination, and advanced features like rate limiting.
An incorrect frame length check could result in a read-past-bound which can cause a crash...
A critical security issue has been found in HAProxy, leaving certain systems vulnerable to remote attack. We want to keep you informed, and we understand that this news might cause you some anxiety. But be reassured - most of our customers won’t be affected...
It’s no big secret that a single processor can only handle so much processing in a given time. So what happens when you reach the limits of what a single processor can handle? Simple, you add more processors...
Cloudflare provides a content delivery network (CDN). A CDN is a worldwide network of servers that delivers web content to clients based on the geographic location of the client...
Load balancing NFS is a real pain; especially when it comes to the locked mounts issue. In this blog I'll explain how to create a highly available NFS server for Kerberos...
As I design, build and sell load balancers based on LVS and HAProxy, it’s in my interests to combat the avalanche of NGINX+ marketing propaganda that I've seen over the last year. Let's call it an attempt to skewer fake news...
HAProxy is awesome. So awesome in fact, that here at Loadbalancer.org HQ - I find it very difficult to generate enough load to break it...so let's try harder!..
Open standards are awesome, and the File Transfer Protocol FTP (inspite of its flaws) has been in constant use for an amazing 40 years! FTP can be a pain to run over firewalls and load balancers, so this blog explains how to configure Microsoft FTP and HAProxy...
Using client certificates for security is a pretty cool idea! You can protect an entire application or even just a specific Uniform Resource Identifier (URI) to only those that provide a valid client certificate...
HAProxy Technologies' ALOHA Pocket is a full-featured ALOHA Load Balancer running on a light USB-powered hardware that easily fits in a pocket, meaning it's possible to carry it everywhere to run tests and demos...
HAProxy is an excellent choice if you need layer 7 functionality, but its a full reverse-proxy, so the application thinks that all of the traffic is coming from HAProxys IP - rather than the clients...
Once HAProxy is running transparently, it will allow the real server to see the client IP so the real server will reply directly back to the client bypassing the load balancer...