Alteon Global Server Load Balancing



Similar documents
GLOBAL SERVER LOAD BALANCING WITH SERVERIRON

FortiBalancer: Global Server Load Balancing WHITE PAPER

Global Server Load Balancing

Global Server Load Balancing

Request Routing, Load-Balancing and Fault- Tolerance Solution - MediaDNS

Introduction to ServerIron ADX Application Switching and Load Balancing. Module 7: Global Server Load Balancing (GSLB) Revision 0310

Superior Disaster Recovery with Radware s Global Server Load Balancing (GSLB) Solution

Highly Available Unified Communication Services with Microsoft Lync Server 2013 and Radware s Application Delivery Solution

The Alteon Application Switch Overview

Figure 41-1 IP Filter Rules

Smart Network. Smart Business. Application Delivery Solution Brochure

Microsoft Dynamics CRM 2015 with NetScaler for Global Server Load Balancing

Global Server Load Balancing (GSLB) Concepts

Application Delivery Controller (ADC) Implementation Load Balancing Microsoft SharePoint Servers Solution Guide

Web Application Hosting Cloud Architecture

Internet Firewall CSIS Packet Filtering. Internet Firewall. Examples. Spring 2011 CSIS net15 1. Routers can implement packet filtering

Configuring Citrix NetScaler for IBM WebSphere Application Services

The Application Delivery Controller Understanding Next-Generation Load Balancing Appliances

Global Load Balancing Solutions

Network Configuration Settings

Lab Developing ACLs to Implement Firewall Rule Sets

Radware s Multi-homing Solutions

Secure and Optimize Application Delivery, Performance, and Reliability

Solution Brief. Load Balancing to Provide Scalable, Reliable, Secure Access Solutions

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

The Application Front End Understanding Next-Generation Load Balancing Appliances

Radware s AppDirector and Microsoft Windows Terminal Services 2008 Integration Guide

Microsoft Office Communications Server 2007 & Coyote Point Equalizer Deployment Guide DEPLOYMENT GUIDE

7 Easy Steps to Implementing Application Load Balancing For 100% Availability and Accelerated Application Performance

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

A Link Load Balancing Solution for Multi-Homed Networks

Alteon Application Switch. And. Microsoft SharePoint Integration Guide

Layer 4-7 Server Load Balancing. Security, High-Availability and Scalability of Web and Application Servers

ExamPDF. Higher Quality,Better service!

Implementing Microsoft Office Communications Server 2007 With Coyote Point Systems Equalizer Load Balancing

Deploying the Barracuda Load Balancer with Office Communications Server 2007 R2. Office Communications Server Overview.

Radware AppDirector and Juniper Networks Secure Access SSL VPN Solution Implementation Guide

Enterprise Edge Communications Manager. Data Capabilities

Measuring the Web: Part I - - Content Delivery Networks. Prof. Anja Feldmann, Ph.D. Dr. Ramin Khalili Georgios Smaragdakis, PhD

THE MASTER LIST OF DNS TERMINOLOGY. First Edition

CompTIA Exam N CompTIA Network+ certification Version: 5.1 [ Total Questions: 1146 ]

WAN Traffic Management with PowerLink Pro100

Understanding Slow Start

LOAD BALANCING IN WEB SERVER

Citrix NetScaler Global Server Load Balancing Primer:

Application Performance Monitoring (APM) Technical Whitepaper

TESTING & INTEGRATION GROUP SOLUTION GUIDE

How To Load Balance On A Bgg On A Network With A Network (Networking) On A Pc Or Ipa On A Computer Or Ipad On A 2G Network On A Microsoft Ipa (Netnet) On An Ip

Networking Topology For Your System

HUAWEI OceanStor Load Balancing Technical White Paper. Issue 01. Date HUAWEI TECHNOLOGIES CO., LTD.

A TECHNICAL REVIEW OF CACHING TECHNOLOGIES

Alteon Web OS. Intelligent Internet. What s New in Alteon Web OS Alteon Web OS Benefits. Product Brief

SiteCelerate white paper

Chapter 16 Route Health Injection

Computer Networks & Security 2014/2015

First Midterm for ECE374 02/25/15 Solution!!

5 Easy Steps to Implementing Application Load Balancing for Non-Stop Availability and Higher Performance

Content Switching Module for the Catalyst 6500 and Cisco 7600 Internet Router

Solutions Guide. Deploying Citrix NetScaler with Microsoft Exchange 2013 for GSLB. citrix.com

Next Generation Application Delivery

Application Delivery Networking

Traffic Controller Service. UltraDNS Whitepaper

AppDirector Load balancing IBM Websphere and AppXcel

Availability Digest. Redundant Load Balancing for High Availability July 2013

WHITE PAPER. Enhancing Application Delivery and Load Balancing on Amazon Web Services with Brocade Virtual Traffic Manager

KEMP LoadMaster. Enabling Hybrid Cloud Solutions in Microsoft Azure

configure WAN load balancing

Edgewater Routers User Guide

Hosted Voice. Best Practice Recommendations for VoIP Deployments

Alteon Application Switch Microsoft SharePoint 2013 Integration Guide

Cisco WAAS for Isilon IQ

Communications and Networking

Netsweeper Whitepaper

shortcut Tap into learning NOW! Visit for a complete list of Short Cuts. Your Short Cut to Knowledge

NEFSIS DEDICATED SERVER

Load Balancing 101: Firewall Sandwiches

CLE202 Introduction to ServerIron ADX Application Switching and Load Balancing

Technical Support Information Belkin internal use only

Edgewater Routers User Guide

Configure WAN Load Balancing

Deployment Guide July-2014 rev. a. Deploying Array Networks APV Series Application Delivery Controllers with Oracle WebLogic 12c

Deploying Microsoft SharePoint Services with Stingray Traffic Manager DEPLOYMENT GUIDE

Load Balancing McAfee Web Gateway. Deployment Guide

SHARE THIS WHITEPAPER. Top Selection Criteria for an Anti-DDoS Solution Whitepaper

Radware s AppDirector and AppXcel An Application Delivery solution for applications developed over BEA s Weblogic

Avoid Microsoft Lync Deployment Pitfalls with A10 Thunder ADC

ISA Server Plugins Setup Guide

Avaya P330 Load Balancing Manager User Guide

CSE 473 Introduction to Computer Networks. Exam 2 Solutions. Your name: 10/31/2013

Stretched Active- Active Application Centric Infrastructure (ACI) Fabric

Configuring Health Monitoring

Managing SIP-based Applications With WAN Optimization

1 Data information is sent onto the network cable using which of the following? A Communication protocol B Data packet

Guide to Deploying Microsoft Exchange 2013 with Citrix NetScaler

Security+ Guide to Network Security Fundamentals, Fourth Edition. Chapter 6 Network Security

CS514: Intermediate Course in Computer Systems

Transcription:

Alteon Global Server Load Balancing Whitepaper GSLB Operation Overview Major Components Distributed Site Monitoring Distributed Site State Protocol Internet Topology Awareness DNS Authoritative Name Server Alteon GSLB Advantages

Global server load balancing (GSLB) allows Web hosters, portals and enterprises to distribute content and services geographically. Dispersing content and services offers a number of advantages, including: Allowing users to be automatically directed to content from servers located in their own geographic region thus reducing response times and decreasing the use of expensive international data connections. Directing users away from congested networks and servers, enhancing the users experience. Increasing fault-tolerance and availability by allowing multi-site content and service deployment, guarding against failures in the event of local or regional network outages, power outages or natural disasters. Alteon Application Switches running GSLB direct user requests to the best site to service the requests using three criteria: 1) Site health, 2) Site proximity and 3) Response time required to retrieve specified content. Global server load balancing is explained here in the context of HTTP and the World Wide Web but is by no means limited to HTTP. Any service that can be load balanced with Alteon Application Switches can operate with GSLB. GSLB Operation Overview When client Z loads their browser and enters the URL: http://www.radware.com (see Figure 1), the system sends a DNS getbyhostname query to the client s local DNS server, asking for the IP address that represents www.radwarealteon.com. The local DNS server examines its DNS cache to determine if it already knows about this particular domain name and host. If it doesn t, the local DNS server hands the request off to the appropriate upstream DNS server. The DNS query is either responded to by an upstream DNS server s cache or is passed on until the request arrives at a DNS server embedded in one of the Alteon Application Switches at site A, B, or C (in this case site A). Which site ultimately receives the request is determined by a myriad of DNS configuration parameters. The Alteon Application Switches at site A, B and C are configured to be distributed sites and all can act as Authoritative Name Servers for the domain www.radwarealteon.com. Each can respond directly to DNS queries with IP addresses that represent that domain. For example, if site A receives the DNS query, the IP address that site A returns represents a Virtual IP (VIP) address for one of the sites hosting the requested content (in this case site B). Figure one GSLB Operation 1. Client DNS request for www.radwarealteon.com sent to local DNS Site A: www.radware.com VIP: 192.168.13.20 Service: HTTP (port 80) 2. Local DNS queries upstream DNS server (in switch) 3. Switch at site A receives DNS request. Acting as an Authoritative Name Server, the switch selects the best site (B) and returns site B's virtual IP address (VIP) to the client's local DNS 5 1 4 2 3 Alteon ADC DSSP Updates Alteon ADC Alteon ADC Site B: www.radware.com VIP: 172.176.110.20 Service: HTTP (port 80) 4. Local DNS server responds to client with site B's VIP 5. Client opens application session to IP 172.176.110.20 DNS Site C: www.radware.com VIP: 162.113.125.28 Service: HTTP (port 80) Smart Network. Smart Business. 2

In the example above, assume that site A returns the IP address 172.176.110.20. The client receives the DNS query response from its local DNS server indicating that 172.176.110.20 is the IP address for www. radwarealteon.com. It then opens a TCP Port 80 connection to 172.176.110.20, the VIP address running at site B. Now, the client is communicating with the Alteon Application Switch exposing content form the Web site at site B. So, how did site A determine that site B was the right site to handle the client s request? How is site B better than the other two possible sites, including the one that responded to the DNS query? With GSLB, three criteria are used to determine to which site DNS will direct the client: Site health Geographic location of the client and sites(s) Measured site response time GLSB develops an ordered list of sites that DNS uses when responding to client requests. The above criteria are used to determine if and where on the list a site appears (this is detailed later). What happens if the site to which the client has been pointed suddenly experiences a failure or is overloaded? Assuming the Alteon Application Switch running GSLB and its Internet connection are up, it issues an HTTP Redirect back to the client, telling it to go to a different site. This occurs when a VIP no longer has any healthy real IP addresses (RIPs) or when an HTTP request is sent to real servers that have reached their respective maximum connection thresholds. Major Components GSLB consists of four major components that run on each switch in the GSLB group: Distributed Site Monitoring where the Alteon Application Switch at each site performs Layer 4 health checking (with content verification as an option) on all other peer remote sites. This determines the health and response time of servers and applications at each site. The Distributed Site State Protocol (DSSP) used to exchange health, load, response time and throughput information between sites through both periodic updates during normal operation and triggered updates when a significant event occurs. Internet Topology Awareness where the Alteon Application Switch, acting as an Authoritative Name Server, examines DNS requests and considers geography when responding. A DNS Authoritative Name Server responds to DNS requests directed to that site. Distributed Site Monitoring An Alteon Application Switch at each distributed site performs periodic health and response time checks of each defined Remote Real IP (RIP) addresses. These remote RIPs (i.e. devices participating in the GSLB operation) typically correspond to VIP addresses running in switches at peer sites being load balanced by GSLB. By executing configurable, iterative health checks to each remote RIP, a site learns about its peer sites server, application and content availability and response time. Each health check consists of opening and closing a TCP connection for a configured application. For applications/ protocols where the Alteon Application Switch supports content health checking (HTTP, FTP, NNTP, DNS, SMTP and POP3), content access can also be configured as part of the health check. Content is accessed based on the content configuration (URL, filename, etc.) defined by the system administrator. Smart Network. Smart Business. 3

When content-based health checking is used, response time is defined as the time from when the Alteon Application Switch issues the request to open the connection to the time it closes the connection, including the time needed to retrieve the content. Without content-based health checking, the time needed to retrieve content wouldn t be a considered factor. Each Alteon Application Switch performs this health and response time check for each defined remote RIP, each corresponding to a VIP address running in a switch at another site. For instance, if site A sees four other sites and there are five VIPs defined on the switch at site A (each having corresponding remote RIPs at each site), then the switch at site A performs 20 health and response time checks during the health check interval (4 sites times 5 remote RIPs at each site). It s important to note that remote RIP health checks don t stop at the switch hosting the remote VIP. The remote Alteon Application Switch passes them through to a server or servers behind the switch. If the switch is in front of a group of load balanced servers, the health checks are distributed across the servers in accordance with the configured load balancing metric. As a result, remote health checks determine the availability of not only remote switches but also the server, applications and if configured, the content behind the switches. If a switch flags a remote RIP as down because it does not respond to health checks, Alteon Application Switch: No longer considers the site eligible for connection handoffs and stops using the remote switches VIP address as a target for DNS responses. Notifies all other distributed sites that the site is not responsive. Each distributed site may then test to see if the site is responsive and act accordingly. Distributed Site State Protocol The Distributed Site State Protocol (DSSP) is a light-weight protocol used to communicate health and response time information from one distributed site to every other distributed site. Each DSSP packet communicates: Response times for each peer site as measured by the site transmitting the DSSP packet. Remaining site capacity (connections available per VIP address) of the transmitting site. Status of the transmitting site. Each site uses the information communicated by the DSSP, plus its own response time checking results, to construct a table of response times for all sites as measured by all sites. This information is, in turn, used to calculate the desired relative traffic distribution traffic between the distributed sites, including itself. For example, the sites might determine that: Site A should receive 20% of all traffic. Site B should receive 10% of all traffic. Site C should receive 10% of all traffic. Site D should receive 20% of all traffic. Site E should receive 10% of all traffic. Site F should receive 30% of all traffic. Smart Network. Smart Business. 4

The DNS authoritative name server in each Alteon Application Switch uses these percentages to determine how often each site s VIP address should be included in responses it sends to downstream DNS servers. The advantages to this algorithm include: Sites that perform the best will generally receive more connections than other sites, but not all of the connections. This prevents traffic spikes from overloading individual sites. The traffic will be averaged across the top sites, providing consistently good response times and user experiences. The sites that are seen as poorly performing by all other sites (an indication of a real problem) will tend to receive few or no connections, providing relief while they process their existing load or corrective action is performed. If every site is performing well (including WAN links, servers, etc.) then it s likely that each site will receive an equal distribution of traffic over time. This ensures that sites don t get overloaded but also perform their share of the work. In addition to regular updates, Alteon Application Switches send DSSP triggered updates under the following exception conditions: The Alteon Application Switch is no longer able to communicate with a remote RIP. The Alteon Application Switch experiences a local resource constraint, such as all servers have reached their maximum connections limit or no real servers available for a VIP. DSSP triggered update contains all of the information in a regular update. Internet Topology Awareness In addition to site health and response time, GSLB takes geographic information into account when determining which distributed site should handle a request. For instance, if there are five sites that host content for a given host and domain name, one each in San Jose (West-U.S.); Atlanta (East-U.S.); Ecuador (South America); Paris, France; and Tokyo, Japan. In general, associating users within a geographic domain (country, continent) with servers in that domain optimizes the user s experience (unless the nearby site is down or overloaded). With this in mind, users in Europe will generally be served by the Paris site while users in Chile will be served by the Ecuador site. Having a user in Japan come to the Atlanta site for content would waste expensive international bandwidth and cause unnecessary response delays to the user. Alteon Application Switches at distributed sites also consider geography when responding to DNS requests. When an Alteon Application Switch receives a DNS request, it recognizes the geographic source of the request by inspecting the Source IP address of the request. It then consults the relative traffic distribution table (described later) for that geographic area to determine which site within the area the DNS response should indicate. For example, if the requesting host is located somewhere in the Pacific Rim area, it will be pointed to the server in Tokyo. If the requesting host is located somewhere in the United States, the Alteon Application Switch will consult the relevant traffic distribution traffic table for the U.S. to determine if the host should be pointed to Atlanta or San Jose. Smart Network. Smart Business. 5

DNS Authoritative Name Server Ultimately, GSLB is accomplished by the DNS Authoritative Name Server running in the Alteon Application Switches at distributed sites returning the appropriate IP address to downstream DNS servers. For example, when a client enters a URL into their browser for a particular hostname (represented by several VIPs scattered throughout the U.S.), their system sends a DNS getbyhostname query to their local DNS server, asking for the IP address representing that domain name and host. The local DNS server then examines its DNS cache to determine if it already knows about this particular domain name and host. If it doesn t know about the hostname, it hands off the request to the next appropriate DNS server. The DNS query is either responded to from that DNS server s cache or is passed on until the request comes to a switch at a distributed site running GSLB. When an Alteon Application Switch at a distributed site receives a DNS query to resolve a hostname from a downstream DNS server, it determines to which geographic region the requesting host belongs. It then checks to see if any healthy distributed sites are present in that region. If there are none, it looks for healthy distributed sites in other regions. Otherwise, the switch provides a DNS response containing an IP address based on the relative traffic distribution traffic table for that region. The IP address will change from response to response based on the percentages in the relative distribution traffic table. Alteon Application Switch GSLB Advantages Alteon Application Switch s GSLB advantages include: 1) Local server load balancing, global server load balancing, application redirection, and Layer 2-3 switching within a single platform. This enables additional applications such as Web cache redirection, DNS redirection, firewall load balancing, IPS load balancing and router load balancing. 2) GSLB directs users to the best performing sites within a geographic region. Competitive solutions that rely on metrics such as router hops fail to consider important factors such as networks congestion and server load when making their load balancing decisions. 3) Intelligent load distribution funnels most traffic to the best performing sites without overwhelming them. All resources are effectively used, improving the user s experience. 4) Users are automatically redirected to the next best site when all servers at a site are down or congested, improving service and content availability. Summary Global Server Load Balancing (GSLB) allows Web hosters, portals and enterprises to enhance users Web experiences by reducing response times and increasing service and application availability. At the same time, organizations deploying GSLB benefit through the decreased use of expensive international data connections. GSLB is an optional software capability on Alteon Application Switches. GSLB running on these switches directs user requests to the best site to service the requests, where the best site is intelligently determined by monitoring site health, site proximity and response time. Smart Network. Smart Business. 6

About Radware Radware, the global leader in integrated application delivery solutions, assures the complete availability, performance and security of business-critical applications for nearly 10,000 enterprises and carriers worldwide. With Radware s comprehensive and award-winning suite of products, companies can drive business productivity, improve profitability, and reduce IT operating and infrastructure costs by making their networks business-smart. Certainty Support Radware offers technical support for all of its products through the Certainty Support Program. Each level of the Certainty Support Program consists of four elements - phone support, software updates, hardware maintenance, and on-site support. Radware also has dedicated engineering staff that can assist customers on a professional services basis for advanced project deployments. Learn More For information regarding Radware s entire portfolio of application delivery and network security products for business-smart networking, please visit www.radware.com. 2012 Radware Ltd. All rights reserved. Radware product and service names are registered trademarks or trademarks of Radware in the U.S. and other countries. Alteon is a trademark and is the property of Radware Ltd. subject to the completion of assignment procedures. All other trademarks and names are the property of their respective owners. Information in this document is subject to change without notice. Smart Network. Smart Business. 7 PRD-Alteon-GSLB-WP-01-2012/03-US

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information