Q: How does QuotaGuard handle proxying HTTPS connections? Is it accurate that Quotaguard Static has HTTPS connections to Heroku? If not, that would mean our traffic would be unencrypted between QuotaGuard’s servers and Heroku?


A: On Heroku, QuotaGuard Static uses SSL Offloading and QuotaGuard Shield uses SSL Passthrough. See more about those two concepts here : https://avinetworks.com/glossary/ssl-passthrough/


For customers that are using QuotaGuard Shield (our more secure solution), then they can bring their own certificates or use Heroku's ACM system. Instructions for those situations can be found here : https://devcenter.heroku.com/articles/quotaguardshield


For customers that are using QuotaGuard Static, customers can choose to have their SSL certificates loaded into our proxy servers so that we can support HTTPS for them. This is easily configurable in our QuotaGuard dashboard to upload your certificates. More can be found here: https://devcenter.heroku.com/articles/quotaguardstatic


If you have issues with either of these solutions, please write us at Support.