Kemp Load Balancer

Version: Kemp LoadMaster v7.2.56.2 and later

Kemp, Inc. offers solutions for load balancing and application delivery software built on a bespoke Linux operating system marketed as LoadMaster. The Kemp LoadMaster is available as both a hardware appliance and a software-based load balancer. It optimizes web infrastructure in terms of high availability, performance, scalability, ease of management, and security.

Netsurion Open XDR facilitates monitoring events retrieved from the Kemp Load Balancer. Netsurion Open XDR seamlessly handles SIEM, log management, file integrity monitoring, machine analytics, and user performance monitoring.

Netsurion Data Source Integrations for Kemp Load Balancer allows you to monitor the following components:

• Security – It provides alerts for specific malicious activities.
• Compliance – It provides a detailed report on respective event types like user logon activities, authentication failure activities, interface activities (Up or Down), directory activities, traffic activities, and suspicious activities.

After Kemp LoadMaster forwards the logs to Netsurion Open XDR Manager via syslog, configure the alerts, dashboards, and reports into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

Type	Name	Description
Security	Kemp Load Balancer – Attempted XSS attack	This alert indicates potentially malicious content detected in the requests through Kemp Load Balancer, which can be in link to XSS.

Reports

Type	Name	Description
Security	Kemp Load Balancer – Activities Overview	This report provides a detailed summary of activities in Kemp Load Balancer. It includes the event name, source IP address, source port, destination address, virtual service domain, and more.

Documentation

The configuration details are consistent with Netsurion Open XDR 9.3 and later, and Kemp LoadMaster.

Download Integration Guide and How-to Guide for configuration instructions and more information.