HAProxy Enterprise provides the following security modules in your load balancing solution. Please refer to your Customer Portal for their installation and configuration information or click on the module name below for its documentation.

Tip

HAProxy Enterprise only: These modules require an active

HAProxy Enterprise subscription. Please contact us if you would like to learn more or begin a free trial.

Javascript Challenge Module

The HAProxy Javascript Challenge module prevents non-legitimate HTTP clients (suspicious browsers or computers infected by malware) to have minimal negative impact on a web application.

Javascript Challenge sends mathematical tests to suspicious clients to help distinguish between a real user and an automated bot. It also provides efficient protection for web applications against DDoS (denial of service) attacks.

Documentation

Verify Crawler

Verify Crawler checks the authenticity of any client that claims to be a web crawler and lets you enforce response policies against those it categorizes as phony. The verification is performed in the background so that legitimate web crawlers are not blocked.

Documentation

Fingerprint Module

The Fingerprinting module can identify client requests or bots even when they attempt to modify their user-agent string or through other methods.

It efficiently distinguishes real search engines from DDoS bots emulating search engines.

Documentation

WAF Offloader Module

The HAProxy WAF Offloader module can identify and block requests that attempt XSS or SQL injection attacks on applications running behind HAPEE. It comes with a customized list of fingerprints to detect false-positives while still providing effective protection for your applications.

Documentation

reCaptcha Module

For cases where a bot can execute JavaScript, HAProxy Enterprise offers a Lua module that requires the visitor to solve a reCaptcha challenge in order to proceed.

Documentation