HAProxy Enterprise combines the widely used open-source HAProxy with features tailored for modern enterprises. It provides scalable and observable operation of load balancing and WAF infrastructure. HAProxy Fusion Control Plane offers centralized management, monitoring, and automation from a single interface, supporting deployments of any size, whether on-premises or in the cloud. DevSecOps teams can manage multiple fleets of load balancers. Centralized management includes configuration, security policy, SSL certificates, authentication, and user administration. Unified observability allows monitoring of application delivery logs, metrics, and reports in one place, enabling resiliency and problem-solving. Automation capabilities save time managing large-scale deployments through integrations with AWS autoscaling, Ansible, or any API. It also automates K8s networking and app routing with service discovery and dynamic configuration. HAProxy Enterprise includes add-ons for advanced administration and security. The HAProxy Enterprise WAF offers accuracy and optional OWASP CRS compatibility with performance and low false positives. The Bot Management Module provides bot identification with local processing for low latency. Global Rate Limiting, powered by the Global Profiling Engine, prevents abuse. Flexible response policies include a JavaScript challenge and a native CAPTCHA module. Automatic updates are provided for ACL/Map files, TLS Ticket keys, device detection databases, and geolocation databases. A RESTful configuration API with Git support is available, along with a native single sign-on module (SSO) for Active Directory and SAML-based identity providers. Role-based access control (RBAC) is supported with HAProxy Fusion. Transitioning from HAProxy to HAProxy Enterprise involves installing HAProxy Enterprise, checking configuration, setting up failover, and seamlessly making the switch. HAProxy Enterprise supports popular Linux distributions, FreeBSD, Docker, AWS, and Azure, with new minor releases issued frequently. Customers also get early access to new features vetted through a QA process.

Features

• Next-generation HAProxy Enterprise WAF
  • Provides exceptional balanced accuracy and optional OWASP CRS compatibility with massively-boosted performance and low false positives.
    • Offers advanced web application firewall capabilities.
    • Boosts performance while minimizing false positives.
• HAProxy Enterprise Bot Management Module
  • Provides fast, reliable, and flexible bot identification with 100% local processing for low latency.
    • Identifies bots quickly and reliably.
    • Ensures low latency with local processing.
• Global Rate Limiting
  • Powered by our Global Profiling Engine provides dynamic Real-Time Cluster-Wide Tracking and enforcement to prevent abuse.
    • Prevents abuse through dynamic real-time cluster-wide tracking.
    • Enforces rate limits effectively.
• Flexible response policies
  • Including a JavaScript challenge and a native CAPTCHA module that supports more CAPTCHA providers beyond Google reCAPTCHA.
    • Offers flexible response policies to mitigate threats.
    • Supports multiple CAPTCHA providers.
• Automatic updates
  • Of ACL/Map files, TLS Ticket keys, device detection databases, and geolocation databases.
    • Keeps security measures up-to-date automatically.
    • Ensures databases are current.
• RESTful configuration API with Git support
  • Enables programmatic configuration management with version control.
    • Provides a RESTful API for configuration.
    • Integrates with Git for version control.
• Native single sign-on module (SSO)
  • For Active Directory and SAML-based identity providers like Azure Active Directory.
    • Supports single sign-on for enhanced security.
    • Integrates with Active Directory and SAML providers.
• Role-based access control (RBAC) with HAProxy Fusion
  • Provides granular access control for enhanced security.
    • Enables role-based access control.
    • Integrates with HAProxy Fusion.