Virtual LoadMaster MAX - Load Balancing Software - Kemp
The Virtual LoadMaster MAX is our most powerful virtual load balancer delivering uncapped throughput and SSL transactions per second. Performance is dependent on allocated system resources on the host platform. It is designed with the largest of deployments in mind and can be licensed perpetually, per-hour on Azure and AWS with all Support Subscription options and on 1 and 3-year annual subscription which includes Support Subscription option of Enterprise plus as standard.
Performance
- Uncapped Throughput
- Uncapped SSL Transactions Per Second (TPS)
- Supports Up to 1,000 Virtual IPs (VIP) and 1,000 Real IPs (RIP)
- Performance dependent on allocated system resources
Virtual & Cloud Application Delivery
Kemp’s Virtual LoadMaster is a fully-featured load balancer and application delivery controller (ADC) that supports all the major application workloads with easy-to-use templates. It offers key features such as SSL offload along with advanced authentication and traffic delivery options. Virtual LoadMaster (VLM) instances can be deployed on all major hypervisors and on leading public cloud services with a consistent set of features regardless of where deployed. Consistency across a wide range of platforms greatly simplifies cloud migration and hybrid cloud deployments with seamless migration and reduced management complexity.
Flexible Licensing
Virtual LoadMaster can be licensed using permanent or subscription licenses on each instance, or with metered licensing across multiple Virtual LoadMaster instances. Metered licensing provides the flexibility to deploy and retire load balancing resources on-demand, greatly simplifying DevOps environments and application scaling.
Easily Managed
Regardless of where Virtual LoadMasters are deployed, a consistent administration interface is presented via Web UI, API, and Kemp 360 Central. Kemp 360 Central provides cross-platform configuration and monitoring of load balancing resources to simplify the administration of multi-load balancer environments. The LoadMaster API (RESTful and PowerShell) enables automation of load balancer deployment, configuration and administration and integration of load balancer operations with DevOps and hypervisor management frameworks.
Support Subscriptions
LoadMaster support subscriptions offer flexibility, simplicity, and value to meet your application delivery requirements and challenges. Support subscriptions are annual and can be upgraded and downgraded as application delivery demands change for maximum flexibility. The tiers are mapped to common customer challenges and requirements, simplifying the task of selecting the appropriate feature set and support levels.
LoadMaster annual subscriptions (VLM-500, VLM-3000, and VLM-MAX) and cloud (AWS & Azure) pay-as-you-go include an Enterprise Plus support subscription as standard.
LoadMaster Support Subscription Tiers
Each subscription tier adds to the features and services delivered by lower tiers as follows
STANDARD SUPPORT ENTERPRISE SUPPORT ENTERPRISE PLUS SUPPORT
10x5 Customer Support 24x7 Customer Support 24x7 Customer Support
Software Updates Software Updates Software Updates
Security Patches Security Patches Security Patches
L4-L7 Application Delivery L4-L7 Application Delivery L4-L7 Application Delivery
Edge Security Pack Edge Security Pack
Intrusion Prevention Intrusion Prevention
Kemp 360 Vision Kemp 360 Vision
- managed service for application - managed service for application
- monitoring & preemptive alerting - monitoring & preemptive alerting
Kemp 360 Central Kemp 360 Central
- centralized management - centralized management
- & orchestration software - & orchestration software
WAF with rule updates
GSLB with IP Reputation
Floating License
Features
L4-L7 Application Delivery
- Server Load Balancing (SLB) for TCP/UDP based protocols
- TLS (SSL) Offload
- Layer 7 Content Switching
- Transparent caching for HTTP/HTTPS
- Compression of static and dynamic HTTP/HTTPS content
- HTTP/2 Support
- Up to 1000 Virtual and 1000 Real Servers
- NAT-based forwarding
- Support for Direct Server Return (DSR) configurations
- Configurable S-NAT support
- VLAN Trunking (802.1Q)
- Link interface bonding (802.3ad)
- IPv6 support for addressing and features
- IPv6 - IPv4 bidirectional conversion
Health Checking
- Aggregated health checks
- ICMP health checking
- Layer 7 checking against any target server port
- Active/Hot Standby configurations for High Availability
- Stateful Failover
- Scale-out Clustering
- Aggregated health checks
Session Persistence
- Source IP (L4)
- TLS (SSL) SessionID (L4)
- HTTP/HTTPS Browser-session (L7)
- HTTP/HTTPS WebClient-session (L7)
- RDP Login ID (L7)
- Port Following for mixed HTTP/HTTPS sessions
- Session reconnection for Microsoft RDS
Scheduling and Balancing Methods
- SDN Adaptive
- Round Robin
- Weighted Round Robin
- Least Connection
- Weighted Least Connection
- Agent-based Adaptive
- Chained Failover (Fixed Weighting)
- Source-IP Hash
- Layer 7 Content Switching
- Global Server Load Balancing (GSLB)
- AD Group based traffic steering
SSL/TLS Features
- Configurable TLS (1.0, 1.1, 1.2, 1.3) and SSL (2.0, 3.0)
- Support for EV (Extended Validation) certificates
- OCSP certificate validation
- Server Name Identification (SNI) support
- Support for up to 1,000 TLS (SSL) certificates
- Automated TLS (SSL) certificate chaining
- Certificate Signing Request (CSR) generation
- FIPS 140-2 Level 1 (Level 2 on FIPS models)
- STARTTLS mail protocols (POP3, SMTP, IMAP)
Administration
- Change auditing
- Web User Interface (WUI)
- SSH & physical console
- RESTful and PowerShell APIs
- VMware vRealize Orchestrator
- Context-based help (WUI)
- Real-time display of performance and availability
- Application templates
- Remote syslogd support
- Automated configuration backup
- Selective restore of configuration
- Connection draining
- Comprehensive logging and reporting
- SNMP support
- Diagnostic shell with in-line tcpdump
Security
- Permit /Deny Access Control Lists
- IP address filtering
- IPsec Tunnel support
- DDoS mitigation, including L7 rate-based attacks
- IPSec VPN to Azure, AWS and public clouds
- Authenticated NTP
Kemp 360 Central
- Included with Enterprise and Enterprise Plus Subscriptions
- LoadMaster Configuration Management
- Automated LoadMaster backups
- Centralized & scheduled firmware updates
- LoadMaster logfile consolidation
- Performance Management
- 3rd party load balancer support
Kemp 360 Vision
- Included with Enterprise and Enterprise Plus Subscriptions
- 24/7 Automated issue escalation service
- Proactive issue management
- Integrated with Kemp Support ticketing
Edge Security Pack
- Microsoft TMG replacement
- Pre-Authentication
- Multi-Domain Authentication & SSO
- X.509 client certificate authentication
- Custom login forms
- Two-factor authentication
- SAML, Active Directory, RADIUS & LDAP
- Forms to Forms-based authentication
Intrusion Prevention
- Snort Compatible IPS
- Permit/Deny IP by address
- Automated IP reputation updates for GSLB
Web Application Firewall (WAF)
- Real-time application threat mitigation
- Daily rule updates
- Threats Mitigated
o Cookie tampering
o Cross-site request forgery
o Cross-site scripting
o Data loss prevention
o SQL Injection
o PCI-DSS Section 6.6 compliance
Global Server Load Balancing (GSLB)
Scheduling and Balancing
- Round Robin
- Weighted Round Robin
- Chained Failover (Fixed Weighting)
- Regional
- Real Server Load
- Location-Based
Security
- Blacklist (Access Control List)
- IP reputation filtering with automatic updates
- DDoS mitigation
Health Checking & Failover
- ICMP health checking of server farm machines
- Layer 4 TCP checking
- HTTP/HTTPS health check
- Active/Active High Availability
Have more questions about Kemp Load Balancers and Application Delivery Controller Products and solutions? Call us at 410-583-1701 or email us at questions@pulsesupply.com.