HAProxy Technologies

HAProxy 3.4 is out now! 🎉 This is a milestone release that advances all four pillars of what makes HAProxy the world's most trusted software load balancer: flexibility, performance, security, and reliability. These powerful capabilities further solidify HAProxy's lead in G2 categories in Load Balancing, API Management, Container Networking, DDoS Protection, and Web Application Firewall (WAF). The full release announcement covers every enhancement in detail, including dynamic backend config examples, ACME setup, CPU topology tuning, and more. Read it here: https://t.co/8W5Q4oKOHf

Every signature-based WAF has the same blind spot: the gap between when a vulnerability is disclosed and when a rule is written to block it. For sophisticated attackers, that window is an opportunity. HAProxy Enterprise WAF was engineered from the ground up without reliance on conventional attack signatures. When proof-of-concept exploits surfaced, we tested multiple public and in-house variants against it. Each one was blocked without a single rule update. Read more about the vulnerability in Drupal, and how HAProxy Enterprise WAF offers zero-day protection:: https://t.co/cWrbXJhktS

Public sector agencies running F5 face rising costs, rigid infrastructure, and renewal cycles that strain fixed budgets. Our live session on switching to HAProxy One is built for teams asking what comes next. No slides, no pitch. Just a personalized approach with direct answers from our experts. Register now: https://t.co/tJGzzjXqCQ

Public sector agencies face a unique set of pressures: fixed budgets, aging infrastructure, growing cybersecurity threats, and a mandate to modernize all at once. HAProxy One removes that pressure and provides agencies cost-effective application delivery and security, deployable anywhere: on-premises, air-gapped, or in the cloud, with no vendor lock-in. Find out more: https://t.co/nboV0q8qUJ

Zero trust means no user, app, or service is trusted by default — inside or outside the network. In a multi-cloud world with no defined perimeter, that's not a philosophy. It's a practical necessity. HAProxy supports zero-trust security across WAF, mTLS, RBAC, rate limiting, and more. Read the full breakdown here: https://t.co/qQ9EPwYk5j

When your infrastructure moves faster than your config files can keep up with, the HAProxy Data Plane API is the missing piece. Join Ron Northcutt on May 28th for a live session with live demos, practical automation patterns, and a clear framework for when to reach for the API. Register here: https://t.co/bdcWNi6ky6

If you're in London and working in or around Kubernetes, containers, or cloud-native infrastructure, June 3rd is worth putting in the calendar. Cloud Native London brings together the kind of people who actually build things, hold genuine talks, and the practical conversations tend to reflect that. There'll also be pizza, which never hurts! Come find the HAProxy team on the night. We'd love to talk infrastructure, swap stories, or just catch up over a slice. 🍕

Meet Nick Leger, our new GTM Operations Specialist! 🎉 Nick brings a rare combination of hands-on sales experience and development skills to the team. And after just three months in, he's already making his mark. We're glad to have him and excited to see what we build together! 🔧

On May 20th, proof-of-concept exploits for a critical Drupal SQL injection vulnerability hit GitHub just hours after disclosure. Signature-based WAFs are reactive by design and every new vulnerability is a gap until a rule closes it. HAProxy Enterprise WAF detects malicious behavior at the request level, so when a zero-day surfaces, teams running it have no gap to close and nothing to update. Protection is already there. Read more about the vulnerability in Drupal, and how HAProxy Enterprise WAF offers zero-day protection: https://t.co/FJThO0uj94

What started as a standalone reverse proxy in 2001 has grown into a fully programmable application delivery and security platform, trusted by some of the most demanding organizations in the world. Read about the 25+ years of evolution of HAProxy, the principles behind it, and what they mean for the companies building on it today: https://t.co/5spu2GWjTS

No olvides inscribirte para la sesión de mañana. Únete a nuestra sesión de preguntas y respuestas en vivo (sin grabación) para descubrir cómo las organizaciones líderes están reduciendo el costo total de propiedad (TCO) hasta en un 90 %. No solo hablaremos de costos, sino que también te mostraremos la hoja de ruta técnica para una transición fluida que ofrece una escalabilidad masiva y seguridad de última generación. Regístrate ahora: https://t.co/rCvYqUo6NC

Certificate validity periods are getting shorter and proposals are already in motion to reduce them to as little as 47 days. Manual renewal workflows are not going to scale with that pace. The ACME protocol automates the full certificate lifecycle, from domain validation to issuance and revocation, with no custom scripts or manual intervention. And HAProxy supports it natively from version 3.2 onward. Read more: https://t.co/1oExAkJ4tN

The ACME protocol was built to take operational burdens, such as managing hundreds or thousands of TLS certificates manually, off your plate entirely. By automating certificate issuance, renewal, and revocation at the proxy layer, teams get a single, consistent approach to certificate management across every application. HAProxy 3.2 and HAProxy Enterprise 3.2 introduced native ACME support, with two challenge types available: HTTP-01 for domain verification via a well-known URL path, and DNS-01 for teams that need wildcard certificates or cannot expose HTTP endpoints. From HAProxy 3.3 onward, certificate saving is fully automated through event notifications and the HAProxy Data Plane API — no manual Runtime API calls required. Read the full configuration walkthrough: https://t.co/Wnk2hNIOlI