Configuring HAProxy & Nginx for SPDY
Basically, HAProxy uses the NPN (and later the ALPN) TLS extension to figure out whether the client can browse the website using SPDY.
Articles in category
Tech
Transparent Proxying & Binding With HAProxy & ALOHA Load Balancer
Here comes the transparent proxy mode: HAProxy can be configured to spoof the client IP address when establishing the TCP connection to the server.
SSL Client Certificate Information in HTTP Headers & Logs
In this blog post, we show how you can enable inserting client certificate information in HTTP headers and reporting them in the log line with HAProxy.
Apache Cdorked Backdoor Detection
In this blog post, we provide an HAProxy configuration that can help you detect the Apache Cdorked Backdoor attack in your systems and protect them against it.
Brute Force Attacks in WordPress (HAProxy Prevention Guide)
A brute force attack in WordPress consists of massively sending requests to a URL with different parameters each time. Here's how to prevent it using HAProxy...
Client IP Persistence or Source IP Hash Load Balancing
In this blog post, we show two ways of performing source IP affinity with HAProxy: through the hash load balancing algorithm and using HAProxy Stick Tables.
IIS 6.0 Appsession Cookie and PCI Compliance
When setup by the application server, the HAProxy load balancer can be used to update cookies on-the-fly. In this blog post, we explain how.
SSL Offloading Impact on Web Applications
Performing SSL at the Load-Balancer Layer is called SSL offloading because you offload this process from your application servers. Here's what you should know.
Mitigating the SSL Beast Attack Using the ALOHA Load Balancer
The beast attack on SSL isn’t new, but we have not yet published an article to explain how to mitigate it with ALOHA or HAProxy.
HAProxy, High MySQL Request Rate and TCP Source Port Exhaustion
In this blog post, we show how to use HAProxy with MySQL at high request rates, and how to prevent the common TCP source port exhaustion error.
Exchange Outlook Web Access (OWA) Cross-Site Request Forgery (CSRF) Protection
In this blog post, we will provide information on how to enable Exchange Outlook Web Access (OWA) Cross-Site Request Forgery (CSRF) protection with HAProxy.
Websockets Load Balancing With HAProxy
HTTP protocol is connection-less and only the client can request information from a server. In any case, a server can contact a client. Furthermore...