We don’t support uploading certificate chains, Intermediate certificates or Root certificates to avoid duplication and save space on our load balancers. But we do have most of the common Intermediate chains already in our repository for your use. You can link/chain your existing SSL certificate to one of these Intermediates to ensure they are trusted […]
Yes, we absolutely do, and always have. Before we supported SNI, we recommended that clients with multiple domains on a single IP address use a SAN (Subject Alternative Name) extension certificate. To use one of these, simply attach it as a standard SSL certificate (that is, do not check the SNI box when attaching it). […]
Yes, we sure do. This fairly recent extension of the TLS protocol allows you to indicate which hostname is being contacted by the browser at the beginning of the handshake process. This allows a server to connect multiple SSL Certificates to one IP address and load the correct site or application for the user. Previously […]
Yes, absolutely. There are no issues using their SSL certificates on our platform for Load Balancing or the Web Application Firewall. In fact, we already have the Let’s Encrypt Authority Intermediate certificate loaded into our repository and ready for your use. You can upload certificates manually through our UI, or you can automate/script the entire […]
Yes, this is absolutely possible, and recommended! To accomplish this, you will need to configure the “protocol” as SSL and map it also to SSL on your servers (both probably on port 443). This ensures SSL is maintained between the client and your servers, while still allowing you to take advantage of our SSL acceleration, […]
The quick answer is that some sort of SSL certificate must be installed on your server(s) if you are not going to perform SSL Offload and want to maintain end-to-end encryption. But this doesn’t have to be the same SSL cert you install in the load balancer if you don’t want. It can be, and […]
There are a few steps involved to successfully export SSL certificates from Microsoft IIS. Essentially, it needs to be exported, run through openssl to separate the key from the cert and split into two files. The two files can then be loaded into the interface. If you already have a key and cert file because […]
The answer depends on what you are trying to accomplish. If you want to enable SSL Offload or SSL intercept so we can inject the source IP (client IP), then YES, you will need to use either the SSL or SSL_TCP protocol with port 443 AND upload and attach an SSL Certificate. If you do […]
Today we released cloud platform version 22.12.0 which includes a number of bug fixes and feature improvements. Below is a list of the most notable changes you will find in this release. DNS Reporting: We significantly improved the DNS Reporting UI as well as back-end systems that generate statistical data. The UI now generates data […]
Our team spent the summer working on a number of significant improvements to our cloud platform to make it more intuitive and easier to use every day. Below is a summary of what we released today. DNSSEC: We’ve further automated DNSSEC signing. You can easily choose the DNSSEC parameters for your zone, and within a […]