Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HAProxy

Goran Jurić
September 18, 2015
Technology
0
1.2k

 HAProxy

Introductory talk about HAProxy, given on September 17th 2015 at ZgPHP Meetup in net.culture club MaMa.

Goran Jurić

September 18, 2015
Tweet

More Decks by Goran Jurić

See All by Goran Jurić
Skaliranje distribuiranih aplikacija uz pomoć AMQP-a
gjuric
0
210
Doctrine 2
gjuric
0
200
Capistrano iliti kako Rubyem deployati PHP kod
gjuric
0
180

Other Decks in Technology

See All in Technology
ZOZOTOWNの検索APIにキャッシュを導入、実装時の工夫や効果について
sattosan
0
190
『登記所備付地図XMLデータ』に触れてみよう〜法務省が公開した大規模オープンデータとは一体何なのか〜 / What is moj map xml
sakaik
0
130
replace of cart system on ZOZOTOWN
takahashikazutaro
0
200
マネジメント3.0モデル入門(120分版)
takufujii
11
2.7k
Spring Boot 3.0へのアップデートのハマり所 / Findings in Migrating our Application to Spring Boot 3.0
line_developers
PRO
4
450
ローコードで改革!End to Endテストの再定義!
odasho
0
130
自分のデータは自分で守る - あなたのCI/CDパイプラインをセキュアにする処方箋
jacopen
4
450
Autonomous Database - Dedicated 技術詳細 / adb-d_technical_detail_jp
oracle4engineer
PRO
1
2.4k
PHP で学ぶ Cache の距離の話 / study_cache_with_php
hanhan1978
3
750
ローコード自動テストを1ヶ月半で導入した話
sumiren
0
140
Linuxのブロックデバイス
sat
PRO
4
1.6k
技育祭2023春 ちゅらデータ講演資料
foursue
1
650

Featured

See All Featured
Statistics for Hackers
jakevdp
785
210k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
500
130k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
24
5.1k
Code Reviewing Like a Champion
maltzj
508
38k
The Cult of Friendly URLs
andyhume
70
5.2k
Building Your Own Lightsaber
phodgson
96
4.9k
The World Runs on Bad Software
bkeepers
PRO
59
5.8k
Building Flexible Design Systems
yeseniaperezcruz
314
35k
BBQ
matthewcrist
75
8.2k
Optimizing for Happiness
mojombo
366
65k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
32
7.3k
Learning to Love Humans: Emotional Interface Design
aarron
263
38k

Transcript

  1. HAProxy  
    Goran Jurić
    ZgPHP Meetup
    17th September, 2015
     

    View Slide

  2. •  The  Reliable,  High  Performance  TCP/HTTP  
    Load  Balancer
    •  V1.5  current  stable  release  

    View Slide

  3. It allows you to  
    •  Distribute the load across several
    servers
    •  Failover to a backup server (HA)
    •  Take the server offline for maintenance
    •  Multiple load balancing algorithms
    •  Protect backend servers

    View Slide

  4. TCP  
    •  Layer 4 proxy
    •  Load balance any TCP/IP traffic

    View Slide

  5. HTTP proxy  
    •  Layer 7 proxy
    •  Redirect to a specific server based on
    different parameters (ACLs)
    •  Sticky sessions

    View Slide

  6. Configuration  
    •  global
    •  default
    •  frontends
    •  backends  

    View Slide

  7. Example  
    frontend www!
    bind *:80!
    bind *:443 ssl crt /etc/ssl/private/your-cert.pem!
    redirect scheme https if !{ ssl_fc }!
    mode http!
    default_backend app-servers!
    !
    backend app-servers!
    !mode http!
    !option forwardfor!
    !option httpchk GET /test-url!
    !cookie PHPSESSID prefix nocache!
    !server app1 :80 check inter 12000 rise 3 fall 3 cookie app1!
    !server app2 :80 check inter 12000 rise 3 fall 3 cookie app2!

    View Slide

  8. ACLs
     
    •  acl network_allowed src 20.30.40.50 20.30.40.40 !
    •  acl restricted_page path_beg /admin !
    •  acl restricted_page path_beg /helpdesk !
    •  block if restricted_page !network_allowed!
    •  acl  is_blog  url_beg  /blog
    •  use_backend  some-other-backend  if  is_blog

    View Slide

  9. Important  
    •  App servers sees haproxy IP
    – nginx:

    View Slide

  10. SSL config
     
    Mozilla  SSL  ConfiguraFon  Generator

    hHps://mozilla.github.io/server-­‐side-­‐tls/ssl-­‐config-­‐generator/

    View Slide

  11. HA in HAProxy  
    •  What if the server running HAProxy
    fails?
    •  Floating IP address
    •  keepalived/heartbeat/pacemaker  

    View Slide

  12. HA in HAProxy  

    View Slide

  13. HA in your application  
    •  Session storage
    – Use a clustered session storage
    – Do not use sessions
    •  Clustered database
    •  Rolling deployments  

    View Slide

  14. GUI  

    View Slide

  15. HATop  

    View Slide

  16. Why not nginx  
    •  General TCP load balancer
    •  Out of band health checks
    •  Admin interface to manage servers
    •  Powerful ACLs

    View Slide