FortiBalancer: Global Server Load Balancing WHITE PAPER



Similar documents
Global Server Load Balancing

Global Server Load Balancing

GLOBAL SERVER LOAD BALANCING WITH SERVERIRON

The Application Front End Understanding Next-Generation Load Balancing Appliances

Request Routing, Load-Balancing and Fault- Tolerance Solution - MediaDNS

Alteon Global Server Load Balancing

WHITE PAPER. FortiWeb and the OWASP Top 10 Mitigating the most dangerous application security threats

Staying Alive Understanding Array Clustering Technology

KEMP LoadMaster. Enabling Hybrid Cloud Solutions in Microsoft Azure

Superior Disaster Recovery with Radware s Global Server Load Balancing (GSLB) Solution

The Application Delivery Controller Understanding Next-Generation Load Balancing Appliances

Managing SIP-based Applications With WAN Optimization

Scaling with Zeus Global Load Balancer

5 Easy Steps to Implementing Application Load Balancing for Non-Stop Availability and Higher Performance

ExamPDF. Higher Quality,Better service!

Global Reputation Monitoring The FortiGuard Security Intelligence Database WHITE PAPER

THE MASTER LIST OF DNS TERMINOLOGY. First Edition

Configuring Citrix NetScaler for IBM WebSphere Application Services

Array Networks & Microsoft Exchange Server 2010

F5 and Oracle Database Solution Guide. Solutions to optimize the network for database operations, replication, scalability, and security

Next Generation Application Delivery

LOAD BALANCING IN WEB SERVER

Introduction to ServerIron ADX Application Switching and Load Balancing. Module 7: Global Server Load Balancing (GSLB) Revision 0310

THE MASTER LIST OF DNS TERMINOLOGY. v 2.0

Avaya P333R-LB. Load Balancing Stackable Switch. Load Balancing Application Guide

Coyote Point Systems White Paper

Official distributor for The Netherlands Exertis GO Connect T. +31 (0) F. +31 (0) E.

Web Application Hosting Cloud Architecture

Application Delivery Networking

Global Load Balancing with Brocade Virtual Traffic Manager

Layer 4-7 Server Load Balancing. Security, High-Availability and Scalability of Web and Application Servers

Global Server Load Balancing (GSLB) Concepts

High Availability for Citrix XenApp

Traffic Controller Service. UltraDNS Whitepaper

SiteCelerate white paper

Smart Network. Smart Business. Application Delivery Solution Brochure

Highly Available Unified Communication Services with Microsoft Lync Server 2013 and Radware s Application Delivery Solution

Solution Brief. Load Balancing to Provide Scalable, Reliable, Secure Access Solutions

Barracuda Load Balancer Online Demo Guide

Citrix NetScaler Global Server Load Balancing Primer:

HUAWEI OceanStor Load Balancing Technical White Paper. Issue 01. Date HUAWEI TECHNOLOGIES CO., LTD.

Microsoft Dynamics CRM 2015 with NetScaler for Global Server Load Balancing

7 Easy Steps to Implementing Application Load Balancing For 100% Availability and Accelerated Application Performance

Topics. 1. What is load balancing? 2. Load balancing techniques 3. Load balancing strategies 4. Sessions 5. Elastic load balancing

APV9650. Application Delivery Controller

Combining Global Load Balancing and Geo-location with Emissary TM

Place graphic in this box

Brocade Virtual Traffic Manager and Microsoft Skype for Business 2015 Deployment Guide

Brocade Virtual Traffic Manager and Microsoft SharePoint 2010 Deployment Guide

Zscaler Internet Security Frequently Asked Questions

A Layman's Guide to Global Server Load Balancing

A Link Load Balancing Solution for Multi-Homed Networks

WAN Traffic Management with PowerLink Pro100

Content Switching Module for the Catalyst 6500 and Cisco 7600 Internet Router

Web Caching and CDNs. Aditya Akella

ORACLE S SIEBEL BUSINESS APPLICATIONS 8.0

Content Delivery Networks. Shaxun Chen April 21, 2009

Infrastructure for more security and flexibility to deliver the Next-Generation Data Center

Networking Topology For Your System

SAP Co-Innovation Lab

High-Performance DNS Services in BIG-IP Version 11

F5 Intelligent DNS Scale. Philippe Bogaerts Senior Field Systems Engineer mailto: Mob.:

HTG XROADS NETWORKS. Network Appliance How To Guide: EdgeDNS. How To Guide

Solution Brief. Secure and Assured Networking for Financial Services

Demand Routing in Network Layer for Load Balancing in Content Delivery Networks

APV x600 Series. Application Delivery Controller APV1600, APV2600, APV4600, APV5600, APV6600, APV8600, APV9600

Background. Industry: Challenges: Solution: Benefits: APV SERIES CASE STUDY Fuel Card Web Portal

White paper. Keys to SAP application acceleration: advances in delivery systems.

How To Understand The Power Of A Content Delivery Network (Cdn)

Web Drive Limited TERMS AND CONDITIONS FOR THE SUPPLY OF SERVER HOSTING

Improving Network Efficiency for SMB Through Intelligent Load Balancing

Avoid Microsoft Lync Deployment Pitfalls with A10 Thunder ADC

Networking and High Availability

DNS Architecture Case Study: Resiliency and Disaster Recovery

Everything You Need to Know About Network Failover

Disaster Recovery with Global Server. Load Balancing

DNS ROUND ROBIN HIGH-AVAILABILITY LOAD SHARING

Deployment Guide July-2014 rev. a. Deploying Array Networks APV Series Application Delivery Controllers with Oracle WebLogic 12c

Optimize Application Delivery Across Your Globally Distributed Data Centers

CloudLink - The On-Ramp to the Cloud Security, Management and Performance Optimization for Multi-Tenant Private and Public Clouds

Product Overview. UNIFIED COMPUTING Managed Load Balancing Data Sheet

The Evolution of Application Acceleration:

Networking and High Availability

Availability Digest. Redundant Load Balancing for High Availability July 2013

High Availability HTTP/S. R.P. (Adi) Aditya Senior Network Architect

The Critical Role of an Application Delivery Controller

Cisco ACE GSS 4492R Global Site Selector

An Introduction to SIP

Transcription:

FortiBalancer: Global Server Load Balancing WHITE PAPER

FORTINET FortiBalancer: Global Server Load Balancing PAGE 2 Introduction Scalability, high availability and performance are critical to the success of any large commercial application deployment. While many enterprises attempt to scale capacity by deploying additional servers and infrastructure at a single location, these centralized deployments are subject to a number of inherent limitations. Centralized Web deployments present a single point of failure for application service delivery - if the site loses connectivity to all or part of the public Internet, it will be inaccessible to users and customers which can have significant impact to the business. Quality of service is also highly sensitive to bandwidth bottlenecks and congestion in the vicinity of the site. Furthermore, users accessing the site from geographically distant locations may experience large and highly variable delays, which are exacerbated by the large number of round trips that HTTP requires to transfer content. Centralized architectures are also not appropriate for international companies which must serve localized content to users in different parts of the world. Global Server Load Balancing (GSLB) overcomes these problems by distributing traffic among a collection of servers deployed in multiple geographic locations. By serving content from many different points in the Internet, GSLB alleviates the impact of network bandwidth bottlenecks and provides robustness in case of local server or network failures at a particular server site. Users can be automatically directed to the nearest or least loaded site at the time of the request, minimizing the likelihood of long download delays and/or service disruptions. Studies have shown that fast and reliable access to content and applications is critical for online businesses to succeed, being that end users are notoriously impatient, and failure to respond within seven seconds can cause at least 30 percent of users to abandon an application or service. With the growth of the mobile internet and proliferation of smart personal devices from smart phones to tablets, the demand for alwayson connectivity to commercial and business applications continues to accelerate. An effective GSLB solution is needed to provide high availability and performance to potentially millions of users across multiple continents or geographies. FortiBalancer family of Application Delivery Controllers (ADC) provides an enterprise-proven GSLB solution to meet the performance and availability needs of both enterprise and cloud deployments. The FortiBalancer Solution The standard FortiBalancer platform provides local server load balancing (SLB), SSL acceleration (encryption/decryption), compression, reverse proxy, caching and an application firewall, making it one of the most complete ADC platforms on the market. To further extend this functionality, Global Server Load Balancing (GSLB) and Link Load Balancing (LLB) can be added to the same hardware via an optional feature license. By combining GSLB with SLB and LLB, FortiBalancer appliances provide a complete load balancing solution for large distributed Web and cloud applications and services. How GSLB Works Two or more mirror sites (referred to as GSLB sites) need to be deployed at geographically separate locations for business continuity, e.g. London and New York. At each site, the FortiBalancer appliances advertise one or more virtual IP addresses (VIPs), each corresponding to one or more of the Web domains or applications served by the site. GSLB works by having FortiBalancers handle DNS queries for domains corresponding to virtual sites and returning for each query a VIP serving the requested domain on one of the GSLB sites. For each query, GSLB selects the best site, as well as the most suitable VIP within the selected site, based on any one of a variety of load balancing algorithms.

FORTINET FortiBalancer: Global Server Load Balancing PAGE 3 www.example.com www.example.com ISP A Internet ISP B ISP C London DataCenter Deployment Each GSLB site contains at least one FortiBalancer appliance or typically a pair of FortiBalancer appliances for high availability, one of which acts as the site master at any given time. When a user requests a Web page, the Web browser first queries their local DNS server to resolve the domain name to an IP address. The local DNS server recursively queries a root DNS server, which responds with the address of an authoritative DNS server for the requested domain. Depending on the DNS delegation arrangements used for the requested domain, this authoritative DNS server may either be one of the GSLB site masters, or another DNS server which in turn delegates the domain to one of the site masters. After a response to a DNS query is generated, it is usually cached at intermediate DNS servers on the response path, as well as on the user s Web browser. Web browsers typically cache DNS entries for several minutes, while most DNS servers cache each entry for a duration indicated by the time-to-live (TTL) value specified by the authoritative DNS server. Cached responses are used for subsequent queries for the same domain name; thus, the GSLB system generally does not receive additional DNS queries when additional URLs are requested from a domain that was recently visited by the same user, or by another user sharing a common DNS server. While caching reduces end-user latency as well as the load on the distributed site s DNS servers, it also reduces the site s control over incoming HTTP traffic. For these and other reasons, effective global server load balancing requires more sophisticated techniques than the standard methods used by most local SLB products. GSLB Techniques FortiBalancer appliances supports a wide range of global load balancing algorithms and provide the flexibility to choose the methods most appropriate for the enterprise s needs. When a site master receives a DNS query, it returns the IP address of a FortiBalancer appliance serving the requested domain. The site master first selects a GSLB site using the configured global load balancing method. It then selects the least loaded appliance within that site serving the requested domain. The following global load balancing methods are available:

FORTINET FortiBalancer: Global Server Load Balancing PAGE 4 Weighted Round Robin: The site master selects sites in a fixed ratio defined by the site weights. Weighted Least Connections: The site master selects the site having the smallest number of open connections relative to the site weight. Administrative Priority: The order of preference of the sites is manually specified. For example, one site might be configured as the primary site, with another site serving as a backup in case the primary site becomes unavailable or overloaded. Geography: The site master selects the most appropriate site based on the geographic location of the user. The FortiBalancer atlas resolves the geographic location of IP addresses at the continent, country, and state/region levels. Proximity: The site master selects the site closest to the client according to network metrics collected by the FortiBalancer atlas or by what was automatically detected. To simplify and reduce the cost of a multi-site GSLB solution, FortiBalancer supports a standalone software client agent which can be installed on any UNIX or Linux server. This eliminates the cost of installing and maintaining appliances at every GSLB member site. This agent can be configured to probe the GSLB site master on a regular basis so the site master is aware of the site s health and proximity. Global Connection Overflow (GCO): Prevents DNS query overflows and packet drops when overflows occurs. The least loaded server in the query chain is automatically selected to receive the overflow traffic without any packet loss. GCO supports up to 64 FortiBalancers in an overflow chain and ensures that servers are never overloaded. Global Least Connection (GLC): The site master can be configured to select the site with least number of TCP connections for accelerated application delivery. IP Overflow (IPO): IPO methods can be configured at a member site for resolving domain names to a healthy IP address with the highest priority, increasing availability and optimizing delivery of the content. Techniques for load balancing DNS queries do not necessarily result in effective load balancing of HTTP traffic. Thus, adaptive dynamic mechanisms are employed to ensure stable and robust global load balancing. Load and network conditions on each GSLB site are continuously monitored by the site masters. Site overload is automatically detected if the number of open connections exceeds a threshold, or if the site s response time exceeds a maximum duration. If any site becomes overloaded, the site masters will automatically divert new traffic away from the site until the load has decreased to acceptable levels. Disaster Recovery FortiBalancer GSLB includes purpose built Disaster Recovery functions. Multiple sites can be grouped as Primary or Standby sites. Traffic will be directed to Primary sites and only when Primary sites fail will traffic be directed to Standby sites. Customers can also select to fail back automatically or manually when Primary sites are recovered. High Availability and Redundancy FortiBalancer GSLB solution is built to support a high level of availability and redundancy. This infrastructure provides automatic fault detection and transparent failover of each component, and contains no single points of failure. Since each GSLB site is capable of answering DNS queries, loss of connectivity to one site does not render the entire distributed Web site inaccessible. This design is significantly more robust than many existing GSLB solutions, where the authoritative DNS for the distributed site runs on a special appliance deployed at one of the GSLB sites. In the event that a GSLB site master goes down, the system will detect the event and assign the site master s IP address to another FortiBalancer appliance in the same site. This appliance will then assume responsibility for responding to incoming DNS queries and communicating with the other site masters. GSLB uses application-level health checks to monitor the end-to-end availability of each VIP in the system. If the services associated with a VIP become unavailable, the VIP is removed from the system and subsequent requests for the affected domain are redirected to an available VIP on the same site or on a different site. The site masters continuously communicate with the GSLB members at other sites for monitoring the VIP availability and build their own dynamic DNS database accordingly. Summary FortiBalancer appliances are a cost effective, high performance, next-generation load balancing and traffic management solution ideally suited for enterprises and cloud services. They conveniently integrate global and local server load balancing and link load balancing in architecture designed for high availability and fault tolerance. FortiBalancer ADC appliances enhance GSLB functionality with advanced geographic and network intelligence to select the best site for each user based on location as well as load. Additionally, the FortiBalancer family of products provides the ability to securely and efficiently manage and distribute large collections of content mirrored at multiple distributed sites. FortiBalancer provides a truly complete solution for running a large distributed Web and network infrastructure - along with the simplicity and ease of administration offered by a highly integrated design.

FORTINET FortiBalancer: Global Server Load Balancing PAGE 5 Fortinet (NASDAQ: FTNT) is a worldwide provider of network secur.ity appliances and the market leader in unified threat management (UTM). Our products and subscription services p rovide broad, integrated and high-performance p rotection against dynamic security th reats while simplifying the IT security infrastructure. Our customers include enterprises, service providers and government entities worldwide, including the majority of the 2009 Fortune Global 100. Fortinet s flagship FortiGate product delivers ASIC-accelerated performance and integrates multiple layers of security designed to help protect against application and network th reats. Fortinet s broad product line goes beyond UTM to help secu re the extended enterprise from endpoints, to the perimeter and the co re, including databases and applications. Fortinet is headquartered in Sunnyvale, Calif., with offices around the world. FBL-GSLB-WP-R1-010710

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information