HAProxy ALOHA
Hardware Load Balancer
The HAProxy ALOHA gives enterprises an incredibly powerful, plug and play, appliance that can be deployed in any environment. ALOHA’s simple graphical interface coupled with an advanced templating system makes it painless to deploy and configure.
HAProxy ALOHA Features
| Solution complète de répartition de charge / contrôleur de livraison d’applications | |
| Interface simple, assistants de configuration et modèles | |
| Mode cluster | |
| Module de protection contre les inondations de paquets |
Ce que ALOHA propose :
- haute disponibilité ;
- mise à l’échelle massive des applications ;
- meilleure gestion et livraison des applications web, avec des performances optimales ;
- protection contre les inondations de paquets, les attaques DDoS et les botnets.
PacketShield
ALOHA is bundled with PacketShield, our patented anti-DDoS solution that filters packets at line rate up to 10 Gbps and outperforms other firewall software, including Netfilter / iptables. Even during heavy load, it adds almost no latency. It uses both stateless and stateful packet filtering to protect the load balancer and the servers behind it.
PacketShield protects your network from TCP floods, including ACK, RST and SYN floods, and also DNS reflection attacks, using ultra-fast inspection and generating responses at the driver level. By maintaining its own session table, it learns which packets are legitimate and can then deflect attacks before they reach your server’s network stack, with zero false-positives.
It provides real-time metrics, giving you insight into the volume of traffic filtered, which can be fed into the monitoring software you choose. This can easily be added onto your hardware HAProxy ALOHA and and is enabled with the ALOHA UI.
PacketShield
ALOHA is bundled with PacketShield, our patented anti-DDoS solution that filters packets at line rate up to 10 Gbps and outperforms other firewall software, including Netfilter / iptables. Even during heavy load, it adds almost no latency. It uses both stateless and stateful packet filtering to protect the load balancer and the servers behind it.
PacketShield protects your network from TCP floods, including ACK, RST and SYN floods, and also DNS reflection attacks, using ultra-fast inspection and generating responses at the driver level. By maintaining its own session table, it learns which packets are legitimate and can then deflect attacks before they reach your server’s network stack, with zero false-positives.
It provides real-time metrics, giving you insight into the volume of traffic filtered, which can be fed into the monitoring software you choose. This can easily be added onto your hardware HAProxy ALOHA and and is enabled with the ALOHA UI.
HAProxy ALOHA ModSecurity WAF
The HAProxy ALOHA provides the ModSecurity Web Application Firewall (WAF) for detecting and stopping malicious web traffic before it can reach your servers. Use it to block SQL injection (SQLi) attacks, cross-site scripting (XSS), remote code execution, and other common threats. ALOHA’s ModSecurity has been hardened to avoid failures that other versions may be vulnerable to, and it demonstrates a performance gain over implementations found in other load balancers. Define custom routing rules to control how much traffic the WAF inspects for even greater performance and get easy observability straight from the ALOHA Logs dashboard.
HAProxy ALOHA ModSecurity WAF
The HAProxy ALOHA provides the ModSecurity Web Application Firewall (WAF) for detecting and stopping malicious web traffic before it can reach your servers. Use it to block SQL injection (SQLi) attacks, cross-site scripting (XSS), remote code execution, and other common threats. ALOHA’s ModSecurity has been hardened to avoid failures that other versions may be vulnerable to, and it demonstrates a performance gain over implementations found in other load balancers. Define custom routing rules to control how much traffic the WAF inspects for even greater performance and get easy observability straight from the ALOHA Logs dashboard.
ALOHA Models
Boîtier rackable 1U à haute performance
| Caractéristiques du modèle | ALB3200 | ALB5200 |
|---|---|---|
| Type de matériel |
Rack 1U | Rack 1U |
| Alimentation électrique | 1 | 2 (double) |
| Interfaces réseau | 6x 1 Go/s | 8x 1 Go/s + 2x 10 Go/s |
| Licences prises en charge |
2K, 4K, 8K | 8k, 16K, 32K, 64K |
| Bande passante maximale niveau 7 |
3 Go/s | 10 Go/s |
| Max conn/s HTTP niveau 7 |
8K | 64K |
| Max req/s (Keep-Alive) niveau 7 | 40K | 388K |
| Max clés RSA-2048/s TLS 1.2 |
200 | 3 500 |
| Max TPS TLS 1.2 |
2 400 | 16 000 |
| Max req/s (Keep-Alive) TLS 1.2 |
20K | 285K |
| Bande passante maximale TLS 1.2 |
800 Mo/s | 10 Go/s |
| Compression bande passante maximale (entrée) | 800 Mo/s | 6 Go/s |
| Conn/s niveau 4 |
40K | 200K |
| Max conn/s DSR niveau 4 | 40K | 660K |
| Max conn/s NAT niveau 4 | 22K | 440K |
| Protection contre les inondations de paquets/s | 1,4 Mpps | 20 Mpps |
| Bande passante de protection contre les inondations de paquets | 1 Go/s | 10 Go/s |
Options de licence ALOHA
Le modèle de licence souple de HAProxy permet aux entreprises de choisir l’appliance qui correspond le mieux à leurs besoins actuels. Tout en pouvant à tout moment augmenter les capacités, sans frais de mise à niveau de matériel.
| Licences | 2K | 4K | 8K | 16K | 32K | 64K |
|---|---|---|---|---|---|---|
| Connexions HTTP/s niveau 7 | 2K | 4K | 8K | 16K | 32K | 64K |
| Connexions concurrentes niveau 7 | 10K | 20K | 40K | 80K | 120K | 160K |
| Transactions SSL/s (TLS 1.2) | 600 | 1 200 | 2 400 | 4K | 8K | 16K |
| Connexion/s niveau 4 | 7 500 | 18K | 40K | 60K | 120K | 200K |
| Matériel | ALB3200 | ALB3200 | ALB3200 ALB5200 |
ALB5200 | ALB5200 | ALB5200 |
GUIDES DE CONFIGURATION
ET DE MISE EN ROUTE DE ALOHA
Apprenez à déployer et configurer votre boîtier ALOHA.
ALOHA 13.0
Release Notes
User Guide
End of Support: August 2022
ALOHA 12.5
Release Notes
User Guide
End of Support: November 2023
ALOHA 12.0
Release Notes
User Guide
End of Support: August 2021
