tony at lbdigest dot com.
I may even use your question as a post so that it may help others (anonymous, if you so choose).
The ability for a load balancer to peer into (and potentially manipulate) the HTTP headers of incoming connections was once an advanced feature, but now is fairly commonplace. Most often it’s used in cookie -based persistence, but it’s also used in web switching, true-source IP resolution, and other tasks.
But the ability to look at the [...]
In my recent review of KEMP’s new LoadMaster software, which includes Web Application Firewall capabilities, Ofer Shezaf (from breach.com) had this to say in the comments section:
Systems supporting only snort rules and lacking a positive security model are not usually not considered a web application firewall, but rather an intrusion prevention system.
Which is an interesting [...]
