Good paper.<p>I've been using hybrid hardware/software load balancers since 2004, and over time I came to different conclusions than the author on load balancing algorithms, SSL offload, layer 3/4 vs. layer 7 load balancing, relative performance of SSL on load balancers, etc.<p>I also place a high value on proxy-capable load balancers for use as a 'control plain' for all ingress into the data centers. I.E. - All Internet accessible content is served by URL filtering, proxy-type, SSL capable load balancers, even if the availability requirements do not warrant redundant web/app servers. This allows us to control access to the application by URL and host header, to filter content as needed, to view and manage the status of all services at a single location, to manage all SSL certs in a single location, to automatically re-direct users to a fail whale when the app is down, etc.<p>The argument against 'doing it all' with the load balancers generally boils down to performance. My counter to that is my circa 2004 Netscalers have no problems doing 1800 requests/second, all SSL, all proxied, and all content switched/content filtered.