Re-encrypting Same-IP SNIs with Kemp LoadMaster
Oksana last edited by
Despite 60% of existing webservices running over TLS 1.3 and 39% over TLS 1.2, there is still the question of the remaining 1% of TLS 1.1/1.0. It means that apps or services in this 1% won’t pick up the OS default that runs over TLS 1.3 or TLS 1.2. There is a possibility to overcome this by decrypting / re-encrypting multiple certificates on the same IP/port while requiring SNI.
Read the article by Didier Van Hoye about using Kemp LoadMaster ADC when facing the need for SNI that supports multiple certificates on the same IP/port while TLS version translations are being enacted.
jt1001001 last edited by
Kemp LoadMaster's are awsome. We use the free one to present Skype for Business on prem to the Internet as well as for publishing a legacy Sharepoint site.