Progress Kemp leads the industry in driving the price/performance value proposition for application delivery and load balancing to levels that our customers can afford. Our products’ versatile and powerful architecture provide the highest value, while enabling our customers to optimize their businesses that rely on Internet-based infrastructure to conduct business with their customers, employees and partners.

Progress Kemp products optimize web and application infrastructure as defined by high-availability, high-performance, flexible scalability, security and ease of management. They maximize the total cost-of-ownership for web infrastructure, while enabling flexible and comprehensive deployment options.

When creating a HTTPS Virtual Service on the LoadMaster, by default the system creates it without SSL offloading enabled. To take advantage of the SSL offloading and security capabilities of the LoadMaster, you can enable SSL Acceleration under SSL Properties in the Virtual Service modify screen. By default, the LoadMaster assigns a self-signed certificate to the service, but you can import your own including the correct chain root and intermediate certs for your site and assign it to your Virtual Service.

To help with security on the client-side connection, we recommend using SSL offloading/re-encryption with the following options:

  • Enable TLS1.2 and TLS1.3 only

  • Use the BestPractices Cipher Set

  • Enable Require SNI hostname

  • For logging purposes, enable Add Received Cipher Name

  • Enable Strict Transport Security Header

  • For logging purposes, under Advanced Properties - select X-Forwarded-For (+ Via) for Add HTTP Headers