Application delivery controller

An application delivery controller (ADC) manages and monitors the requests and responses between clients and web servers. An ADC can act as a reverse proxy. It receives a client request, decrypts it, and after verifying its validity, passes it to the server. The server sends back a response to the ADC, which encrypts the response and forwards it to the client.

The primary function of early, hardware-based ADCs was load balancing, but as time progressed and network architecture evolved, ADCs evolved also, adding security, optimized end-user performance, application acceleration, and server reliability to networks with their presence. ADCs these days can be hardware, software, and even virtual appliances.

What are the functions of an ADC?

An ADC is typically placed between a firewall and one of the application servers in a place called the demilitarized zone to provide an additional layer of security. An ADC functions by integrating and making use of various protocols, like HTTPS, HTTP, DNS, UDP, and TCP.

Older ADCs that mainly acted as load balancers for servers were responsible for traffic and application deployment. If any application on the server or even the server itself went down, an ADC redirected the server's traffic to another server, thus preventing downtime.

Now, ADCs have evolved to do much more than load balancing. They offer SSL offloading, cloud support, enhanced visibility, application analytics, TCP optimization, rate shaping, web application firewalls, and application performance enhancement.

ADCs use the methods below to improve performance:

  • Server load balancing
  • Server health monitoring
  • Caching and compression
  • Offloading SSL processing
  • Improved security


Server load balancing

When a server is bombarded with multiple requests, its performance is negatively affected. An Application delivery controller provides load balancing reduces the strain on that server by spreading out the requests. A load balancer distributes the incoming requests among multiple servers so that a single server does not get overloaded by the traffic. Round-robin is the simplest algorithm for this as it just forwards the requests to the next server in line. Complex algorithms take into account factors like server capacity, the type of data requested, and the data size.

An ADC controller works on Layers 3, 4, and 7 for load balancing. Load balancing in Layers 3 and 4 is relatively simple as the incoming traffic will be distributed on the basis of subnets, port numbers, protocols, DNS names, and IP addresses. Load balancing in Layer 7 can be a bit complex as the URL, request type, HTTP header, and other factors will be considered while distributing traffic. The ADC software will also read the HTTP header and the data to determine to which server it should redirect the request.

Server health monitoring

At the very least, an ADC comes equipped with a simple ping tool to check the availability of a server as it would be pointless to redirect traffic to an already overloaded server. ADCs ping the servers constantly and monitor them for any signs of abnormality. If the polling fails, the server will be deemed unavailable, and no traffic will be redirected to that server until it becomes available again.

Caching and compression

An ADC enhances server speed and performance by storing data locally so that every time it receives a request, it does not have to fetch data from a back-end server. This is called caching, and it significantly reduces the load on servers and minimizes delivery time. When a client requests a large file, like an image, music, or video file, this ADC service can compress the content before sending it to the client so as to reduce the delivery time.

Offloading SSL processing

The SSL protocol secures HTTP traffic and requests by encrypting them. However, a web server would be wasting computation resources to decrypt and encrypt the SSL traffic. Instead, an SSL offloader should be used as it reduces the computing load of the servers by forwarding the traffic after decrypting the data. SSL offloading can be done by using a dedicated server to decrypt the traffic or by using an ADC in its stead.

Improved security

ADC ADC platforms use security methods like firewall load balancing, intrusion detection and prevention, and web application firewalls. ADCs are engineered to be the first line of defense against DDoS attack traffic. An ADC's DNS application firewall offers protection from attacks targeting DNS servers. An ADC's web application firewall stops cross-site scripting and ensures the privacy of sensitive data.

Accelerate your ADCs' performance with OpManager

OpManager is a network monitoring and management tool that can monitor and manage a wide variety of devices. With over 10,000 device templates and 35,000 vendor templates, OpManager can improve the performance of the ADCs in your network by using its wide array of features, including:

  • Server performance monitoring: Keep track of your servers' health, availability, traffic, and more with OpManager's server performance monitoring. With over 5,000 metrics, you can monitor every activity of your servers and make necessary adjustments so that your ADCs can work flawlessly.
  • Service and process monitoring: As discussed earlier, an ADC's load balancing makes use of Layers 3, 4, and 7. Layer 7 load balancers use TCP to send and receive transmissions. With OpManager's service monitoring, you can monitor not only the availability of services using TCP but also services using HTTP, UDP, DNS, and more. OpManager also uses SNMP, WMI, and CLI protocols to monitor the processes on your devices.
  • Availability monitoring: With OpManager, the ADCs in your network infrastructure will continuously trawl through your network servers to ensure their health and availability because redirecting to an overburdened server will not do. With OpManager's availability monitoring, you can easily determine the availability of your servers, thus enabling the ADCs to redirect network traffic without a hitch.
  • WAN monitoring: With OpManager's WAN monitoring, get real-time data about connection loss, round-trip time, timeouts, and the average payload of your WAN. With this data, proactively monitor your WAN, pinpoint the source of errors, and resolve them before they affect the entire network. This way, the ADCs can work without any impending danger of a downed network.

Application Delivery Controller FAQ

What is an Application Delivery Controller?


An application delivery controller (ADC) is a networking device that helps manage and optimize the delivery of web-based applications and services to end-users. It acts as a traffic cop, steering incoming web traffic to the most efficient servers or resources based on factors such as server availability, network congestion, and user location.

Why is an application delivery controller important?


ADCs optimize application delivery and improve performance by load balancing, caching, and compression techniques. They ensure that applications are delivered to users efficiently and effectively, which results in faster response times and increased productivity

What does application delivery controller do?


An ADC's main functions include load balancing, SSL offloading, traffic shaping, content caching, and application security. By distributing traffic across multiple servers, an ADC can improve application performance, increase availability, and enhance security. Additionally, an ADC can detect and mitigate distributed denial of service (DDoS) attacks, protect against web application vulnerabilities, and provide advanced analytics and monitoring capabilities to help administrators optimize application delivery.

How does application delivery controller (ADC) work?


An ADC distributes and manages application traffic between servers and clients by routing the traffic and performing a variety of functions such as load balancing, SSL offloading, content caching, and security. When a user requests an application, the client sends a request to the ADC for load balancing. The ADC analyzes the request and determines the best server to handle it based on the load balancing algorithm used. This ensures that the application traffic is evenly distributed across all available servers. It then terminates SSL connections (if enabled) and decrypts the traffic, then re-encrypts it with its own SSL certificate to enhance security and encryption. The ADC can cache frequently requested content and serve it directly from the cache without needing to access the application server.

For a more hands-on approach to learning more about OpManager, download our free, 30-day trial. Get a free and personalized demo and try OpManager yourself. Request a quote to evaluate the best options for your organization.

 Pricing  Get Quote