Knowledge Base | Security
![Using HAProxy as an API Gateway, Part 6 [Security]](https://cdn.haproxy.com/wp-content/uploads/2021/03/API-Gateway-Security-1000x500.png)
Using HAProxy as an API Gateway, Part 6 [Security]
HAProxy acts as an API gateway in front of your application servers, providing cross-cutting security. Using HAProxy as an API Gateway, Part 1 [Introduction] Using HAProxy as an API Gateway, Part 2 [Authentication] Using HAProxy as an API Gateway, Part 3...
![Using HAProxy as an API Gateway, Part 5 [Monetization]](https://cdn.haproxy.com/wp-content/uploads/2021/03/API-Gateway-Monetization-1000x500.png)
Using HAProxy as an API Gateway, Part 5 [Monetization]
Use HAProxy as an API gateway to enable API monetization. Using HAProxy as an API Gateway, Part 1 [Introduction] Using HAProxy as an API Gateway, Part 2 [Authentication] Using HAProxy as an API Gateway, Part 3 [Health Checks] Using HAProxy as an API Gateway, Part 4...
The HAProxy Enterprise WAF
The HAProxy Enterprise WAF with support for ModSecurity rulesets protects your web applications from sophisticated, Layer 7 threats left unhandled by network firewalls. Data breaches. Loss of consumer confidence. An endless cycle of companies being compromised....
Announcing HAProxy Kubernetes Ingress Controller 1.5
We've released version 1.5 of the HAProxy Kubernetes Ingress Controller. This version unlocks access to the raw HAProxy configuration language for power users to gain more control. You can also enable mutual TLS authentication between the ingress controller and...
![HAProxy Enterprise Response Policies [Infographic]](https://cdn.haproxy.com/wp-content/uploads/2021/01/infogr2-1000x500.jpg)
HAProxy Enterprise Response Policies [Infographic]
With HAProxy Enterprise, you can defend the network with Response Policies. In this infographic, we demonstrated countermeasures you can use against malicious clients and their requests. Deny Tarpit Silent Drop Reject Shadowban reCAPTCHA Want to stay up to date on...
Route SSH Connections with HAProxy
Route SSH connections through HAProxy using the SSH ProxyCommand feature and SNI. Watch our on-demand webinar in French "How to Route SSH Connections with HAProxy". Did you know that you can proxy SSH connections through HAProxy and route based on hostname? The...
![[On-demand Webinar] Achieving FIPS 140-2 Encryption Compliance with HAProxy Enterprise on Red Hat Enterprise Linux](https://cdn.haproxy.com/wp-content/uploads/2020/10/HAProxy-FIPS-webinar-1000x500.png)
[On-demand Webinar] Achieving FIPS 140-2 Encryption Compliance with HAProxy Enterprise on Red Hat Enterprise Linux
Encryption is an important facet of cybersecurity. It involves scrambling messages so that they can not be read by unauthorized parties in order to protect private information, which is particularly important when sending data across an untrusted network or the...
HAProxy and HTTP Strict Transport Security (HSTS)
HAProxy provides an easy and straightforward way to add HTTPS to your website. As a load balancer positioned in front of your web servers, it can handle all of the encryption and decryption duties, offloading those tasks from your upstream servers. That's good because...
Redirect HTTP to HTTPS with HAProxy
Use the HAProxy load balancer to redirect users from HTTP to HTTPS automatically. For decades, our lives have become increasingly dependent on sending and receiving data from across the Internet. Now, with more people working, studying, and hanging with friends...
CVE-2020-15598: HAProxy Enterprise Unaffected Due to ModSecurity Hardening Measures!
The OWASP ModSecurity Core Rule Set team has reported a Denial of Service vulnerability in ModSecurity version 3.x that allows an attacker to send a crafted payload that exploits a flaw in how regular expressions are matched within the software. A CVE (CVE-2020-15598)...
