keepalived & ha-proxy as an alternative to commercial loadbalancer - august 2014
TRANSCRIPT
Keepalived & HA-Proxy as an alternative to commercial loadbalancer
Wer bist du?
● Dein Name
● Was machst du mit Linux
● Warum bist du heute hier (optional)
Das Problem
The World
Server
Datacenter
Router
CPU
IPTables Cluster (ipt-cluster)
The World
Server
Datacenter
Router
Server
Server
Mehr Möglichkeiten
The World
Datacenter
Router
Loadba lancer
Server
Server
Server
Single Point of Failure
The World
Server
Datacenter
Router
ServerLoadba lancer
Server
Doppelherz
The World
Server
Datacenter
Router
Server
Loadba lancer
Server
Loadba lancer
http://de.wikipedia.org/wiki/Datei:Doppelherz_logo.svg
Wenn einer nicht mehr mag...
The World
Server
Datacenter
Router
Server
Loadba lancer
Server
Loadba lancer
Übernimmt der Andere
The World
Server
Datacenter
Router
Server
Loadba lancer
Server
Loadba lancer
Router
Floating IP
5.9.87.3
Router
Floating IP
5.9.87.3
Router
Keepalived
5.9.87.3
Direct Routing
The World
Server
Datacenter
Router
Server
Keepali ved
Server
Keepali ved
5.9.78.3
5.9.78.35.9.78.3
5.9.78.3
NAT
The World
Server
Datacenter
Router
Server
Keepali ved
Server
Keepali ved
5.9.78.3
10.1.1.510.1.1.4
10.1.1.3
10.1.1.2
HA-Proxy
The World
Server
Datacenter
Router
Server
Keepali ved
Server
Keepali ved
5.9.78.3
HA
-Pro xy
HA
-Pro xy
10.1.1.510.1.1.4
10.1.1.3
10.1.1.2
HA-Proxy / HTTP
Server
Datacenter
Router
Server
Keepali ved
Server
5.9.78.3
HA
-Pro xy
10.1.1.510.1.1.4
10.1.1.3
GET / HTTP/1.0Host: www.foo.org
GET / HTTP/1.0Host: www.foo.orgX-Forwarded-For: 19.4.1.124
10.1.1.2
HA-Proxy / HTTP
Server
Datacenter
Router
Server
Keepali ved
Server
5.9.78.3
HA
-Pro xy
10.1.1.510.1.1.4
10.1.1.3
GET / HTTP/1.0Host: www.foo.org
GET / HTTP/1.0Host: www.foo.orgX-Forwarded-For: 19.4.1.124
10.1.1.2
src dst
19.4.1.124 5.9.78.3
src dst
10.1.1.2 10.1.1.4
HA-Proxy / Transparent Proxy
Server
Datacenter
Router
Server
Keepali ved
Server
5.9.78.3
HA
-Pro xy
10.1.1.510.1.1.4
10.1.1.3
10.1.1.2
src dst
19.4.1.124 5.9.78.3
src dst
19.4.1.124 10.1.1.4
0000000 6f72 746f 783a 303a 303a 723a 6f6f 3a740000010 722f 6f6f 3a74 622f 6e69 622f 7361 0a680000020 6164 6d65 6e6f 783a 313a 313a 643a 65610000030 6f6d 3a6e 752f 7273 732f 6962 3a6e 752f0000040 7273 732f 6962 2f6e 6f6e 6f6c 6967 0a6e
Was haben wir soweit?
The World
Server
Datacenter
Router
Server
Keepali ved
Server
Keepali ved
5.9.78.3
HA
-Pro xy
HA
-Pro xy
10.1.1.510.1.1.4
10.1.1.3
10.1.1.2
Fragen?
The World
Server
Datacenter
Router
Server
Keepalive d
Server
Keepalive d
5.9.78.3
HA
-Proxy
HA
-Proxy
10.1.1.510.1.1.4
10.1.1.3
10.1.1.2
● Keepalived: http://www.keepalived.org/
● HAProxy: http://www.haproxy.org/
● Beispiel mit Rex: https://github.com/RexOps/service-loadbalancer
Vielen Dank für Eure Aufmerksamkeit!
Kontakt
Jan GehringSystems Architecture
inovex GmbHOffice PforzheimKarlsruhe Straße 7175179 Pforzheim
+49 (0)173 3181 [email protected]