Re-encrypting Same-IP SNIs with Kemp LoadMaster



  • k.jpg
    Despite 60% of existing webservices running over TLS 1.3 and 39% over TLS 1.2, there is still the question of the remaining 1% of TLS 1.1/1.0. It means that apps or services in this 1% won’t pick up the OS default that runs over TLS 1.3 or TLS 1.2. There is a possibility to overcome this by decrypting / re-encrypting multiple certificates on the same IP/port while requiring SNI.

    Read the article by Didier Van Hoye about using Kemp LoadMaster ADC when facing the need for SNI that supports multiple certificates on the same IP/port while TLS version translations are being enacted.



  • Kemp LoadMaster's are awsome. We use the free one to present Skype for Business on prem to the Internet as well as for publishing a legacy Sharepoint site.


Log in to reply