Upgrade to Pro — share decks privately, control downloads, hide ads and more …

HAProxy

Goran Jurić
September 18, 2015
Technology
0
1.4k

 HAProxy

Introductory talk about HAProxy, given on September 17th 2015 at ZgPHP Meetup in net.culture club MaMa.

Goran Jurić

September 18, 2015
Tweet

More Decks by Goran Jurić

See All by Goran Jurić
Skaliranje distribuiranih aplikacija uz pomoć AMQP-a
gjuric
0
270
Doctrine 2
gjuric
0
260
Capistrano iliti kako Rubyem deployati PHP kod
gjuric
0
230

Other Decks in Technology

See All in Technology
LangfuseでAIエージェントの 可観測性を高めよう!/Enhancing AI Agent Observability with Langfuse!
jnymyk
0
150
ソフトウェア開発現代史: "LeanとDevOpsの科学"の「科学」とは何か? - DORA Report 10年の変遷を追って - #DevOpsDaysTokyo
takabow
0
170
アセスメントで紐解く、10Xのデータマネジメントの軌跡
10xinc
1
290
”知のインストール”戦略:テキスト資産をAIの文脈理解に活かす
kworkdev
PRO
9
4.1k
大AI時代で輝くために今こそドメインにディープダイブしよう / Deep Dive into Domain in AI-Agent-Era
yuitosato
1
230
古き良き Laravel のシステムは関数型スタイルでリファクタできるのか
leveragestech
1
610
Lightdashの利活用状況 ー導入から2年経った現在地_20250409
hirokiigeta
2
270
SREが実現する開発者体験の革新
sansantech
PRO
0
150
Amazon CloudWatch Application Signals ではじめるバーンレートアラーム / Burn rate alarm with Amazon CloudWatch Application Signals
ymotongpoo
5
240
低レイヤを知りたいPHPerのためのCコンパイラ作成入門 / Building a C Compiler for PHPers Who Want to Dive into Low-Level Programming
tomzoh
0
190
フロントエンドも盛り上げたい!フロントエンドCBとAmplifyの軌跡
mkdev10
2
220
“パスワードレス認証への道" ユーザー認証の変遷とパスキーの関係
ritou
1
220

Featured

See All Featured
The MySQL Ecosystem @ GitHub 2015
samlambert
251
12k
Making Projects Easy
brettharned
116
6.1k
Embracing the Ebb and Flow
colly
85
4.6k
Speed Design
sergeychernyshev
29
880
The Cult of Friendly URLs
andyhume
78
6.3k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
41
2.2k
A designer walks into a library…
pauljervisheath
205
24k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
160
15k
Faster Mobile Websites
deanohume
306
31k
Measuring & Analyzing Core Web Vitals
bluesmoon
7
380
Designing for humans not robots
tammielis
252
25k
The Cost Of JavaScript in 2023
addyosmani
49
7.7k

Transcript

  1. HAProxy   Goran Jurić ZgPHP Meetup 17th September, 2015  

  2. •  The  Reliable,  High  Performance  TCP/HTTP   Load  Balancer • 

    V1.5  current  stable  release  

  3. It allows you to   •  Distribute the load across

    several servers •  Failover to a backup server (HA) •  Take the server offline for maintenance •  Multiple load balancing algorithms •  Protect backend servers

  4. TCP   •  Layer 4 proxy •  Load balance any

    TCP/IP traffic

  5. HTTP proxy   •  Layer 7 proxy •  Redirect to

    a specific server based on different parameters (ACLs) •  Sticky sessions

  6. Configuration   •  global •  default •  frontends •  backends

     

  7. Example   frontend www! bind *:80! bind *:443 ssl crt

    /etc/ssl/private/your-cert.pem! redirect scheme https if !{ ssl_fc }! mode http! default_backend app-servers! ! backend app-servers! !mode http! !option forwardfor! !option httpchk GET /test-url! !cookie PHPSESSID prefix nocache! !server app1 <app1-server-ip>:80 check inter 12000 rise 3 fall 3 cookie app1! !server app2 <app2-server-ip>:80 check inter 12000 rise 3 fall 3 cookie app2!

  8. ACLs   •  acl network_allowed src 20.30.40.50 20.30.40.40 ! • 

    acl restricted_page path_beg /admin ! •  acl restricted_page path_beg /helpdesk ! •  block if restricted_page !network_allowed! •  acl  is_blog  url_beg  /blog •  use_backend  some-other-backend  if  is_blog

  9. Important   •  App servers sees haproxy IP – nginx:

  10. SSL config   Mozilla  SSL  ConfiguraFon  Generator hHps://mozilla.github.io/server-­‐side-­‐tls/ssl-­‐config-­‐generator/

  11. HA in HAProxy   •  What if the server running

    HAProxy fails? •  Floating IP address •  keepalived/heartbeat/pacemaker  

  12. HA in HAProxy  

  13. HA in your application   •  Session storage – Use a

    clustered session storage – Do not use sessions •  Clustered database •  Rolling deployments  

  14. GUI  

  15. HATop  

  16. Why not nginx   •  General TCP load balancer • 

    Out of band health checks •  Admin interface to manage servers •  Powerful ACLs