Anyone who has been watching Loadbalancer.org over the last few years will have noticed the things that we don't like :-). We've made it pretty clear that we don't like load balancing firewalls and we've also been pretty reluctant to turn our load balancers into a GSLB.
The integrated WAF in version 8 of the Loadbalancer.org appliance has been designed for fast, low latency PCI compliance for our customers.
Updates include an enhanced process for high availability appliance pairing, improved LBCLI, and advancement of the web user interface.
All of us here at Loadbalancer.org hope we are responding to your needs today and preparing for the future.
Anomaly score based blocking is more flexible and effective than simple first error blocking.
One of our favorite methods of load balancing is using Layer 4 DR because it is transparent and fast. Unfortunately, because of Amazon's infrastructure, this is not possible in EC2 so we need to use another method which means we are left with layer 4 NAT and transparent HAproxy using TProxy.
Denial of Service (DOS) attacks can be used to degrade or cripple the functionality of a site.
Why not take the opportunity to meet the Loadbalancer.org team face to face.
The media industry had lots of fun at the expense of e-commerce outlets on Black Friday, mercilessly reporting on site crashes and outages.
Is getting an A+ rating with the Qualys scanner starting to feel a bit like chasing a mythical unicorn? Every time you get close to catching and keeping the beast — it run's away and they change the rules again!
A huge thank you to everyone who visited our stand during the two day event. There were some productive discussions, light-hearted fun, and we even talked about load balancing!!!
So here we go again... Another vulnerability has been found in OpenSSL. However, this is very hard to exploit and requires the hacker to have control of your wireless hotspot or network.
There seems to have been so much hype over the recent bash bug, shell shock! And there were all the people in the Microsoft world thinking YES we are so cool we are NOT affected by it!
Understandably, we get quite a few requests for a product roadmap containing release notes and feature updates. We've had a chat about this internally and thought that it would be nice to have a permanent post on the blog that we change on the fly as and when customer requirements change.
By default, the load balancer uses a TCP connect to the port defined in the Virtual Service to verify the health of each real (backend) server. For IIS, this would typically be port 80.
WNLB causes switch flooding and does not support multiple scheduling algorithms for distributing client load.
By default, the source IP address of the packet reaching the web servers is the IP address of the load balancer and not the IP address of the client.
Whilst the Heartbleed bug was relatively easy to exploit, the latest batch of bugs are not.
To ensure complete protection all SSL certificates that have been used with a vulnerable version of OpenSSL should be regenerated using a new private key.
Exchange 2013 is Microsoft's latest enterprise level messaging and collaboration server. It has been designed for simplicity of scale, hardware utilization, and failure isolation.
In Exchange 2010, system functionality is split into five server roles (Mailbox, Client Access (CAS), Unified Messaging, Hub Transport (HT) and Edge Transport). Mandatory roles are Mailbox, Client Access and Hub Transport.
After the success of my previous ramblings, I thought it only fair that I take a few moments to highlight the reasons why you shouldn't be using Loadbalancer.org.
Let me first say that I'm not really a fan of PCI scanners. It's not so much that I'm anti security scanners but rather that scanning for vulnerabilities based on only the version number a package returns seems rather simplistic to me.
There are a lot of SSL offload throughput statistics available for appliances across the internet but rarely do they detail the way they were tested
The ideal way to monitor the health of the real servers is to to have a dedicated monitoring system in place such as Nagios. However this isn’t always an option, so for some they require the loadbalancer to send an alert.