Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
負荷分散装置について理解を深める
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
Kohei Saito
January 21, 2020
43
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
負荷分散装置について理解を深める
『負荷分散装置について理解を深める』勉強会用スライド。※本資料に記述された見解は私個人の見解であり、所属する会社&組織の見解を必ずしも反映したものではありません。ご了承ください。
Kohei Saito
January 21, 2020
More Decks by Kohei Saito
See All by Kohei Saito
Azure SRE Agent のご紹介
kohei3110
2
320
Java on Azure で LangGraph!
kohei3110
1
480
202504xx_Secure Deployment - GitHub Actions で始める安全な CI_CD パイプライン構築
kohei3110
0
150
ID連携の仕組み・認証/認可について理解を深める
kohei3110
0
49
Kerberos認証について理解を深める
kohei3110
0
60
CDNについて理解を深める
kohei3110
0
52
DNSについて理解を深める
kohei3110
1
150
グラフの機械学習手法 Pg2vec
kohei3110
0
54
最短経路の実行計画について
kohei3110
0
55
Featured
See All Featured
Information Architects: The Missing Link in Design Systems
soysaucechin
0
1k
Getting science done with accelerated Python computing platforms
jacobtomlinson
2
250
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
480
Documentation Writing (for coders)
carmenintech
77
5.4k
Fantastic passwords and where to find them - at NoRuKo
philnash
52
3.8k
Navigating Algorithm Shifts & AI Overviews - #SMXNext
aleyda
1
1.3k
How Software Deployment tools have changed in the past 20 years
geshan
0
34k
A designer walks into a library…
pauljervisheath
211
24k
Un-Boring Meetings
codingconduct
0
330
Facilitating Awesome Meetings
lara
57
7k
Evolving SEO for Evolving Search Engines
ryanjones
0
230
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
25
2k
Transcript
2020/02/19 負荷分散装置について理解を深める
2
3 1. • • DNS • BIG-IP 2. OCI •
OCI BIG-IP • OCI-LB Agenda
4
5 DNS IP DNS test.jp 400 A 150.0.0.1 test.jp 400
A 150.0.0.2 A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP test.jp IP 150.0.0.2 150.0.0.1
6 DNS test.jp 400 A 150.0.0.1 test.jp 400 A 150.0.0.2
A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP 150.0.0.2 150.0.0.1 test.jp IP 150.0.0.1
7 NAT LB 1.1.1.1:5000 3.3.3.3:80 150.0.0.1:80 TCP 2.2.2.2:51000 3.3.3.3:80 150.0.0.3:80
TCP 150.0.0.1 150.0.0.2 150.0.0.3 1.1.1.1 2.2.2.2 IP
8 L3 ICMP IP LB ICMP Echo Request ICMP Echo
Reply LB ICMP Echo Request ICMP Echo Reply Reply NIC NIC NIC NIC
9 L4 3way LB ACK SYN SYN/ACK nginx Apache OS
LB ACK SYN SYN/ACK nginx Apache OS SYN/ACK nginx Apache
10 L7 LB GET /index.html 200 OK /index.html LB GET
/index.html 404 Not Found /index.html
11 IP IP
12 LB 150.0.0.1 150.0.0.2 150.0.0.3 1
13 LB 2 1 1
14 HTTP/1.1 LB 94 98 100 100 100
15 LB 3 5 10 8 8 8
16 IP (or )IP IP (or ) (or ) LB
1.1.1.1 2.2.2.2 IP
17 LB
18 IP IP IP LB 1.1.1.1 150.0.0.1 15 2.2.2.2 150.0.0.3
15 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
19 Cookie Cokkie ID LB 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
HTTP Cookie) Cookie HTTP/1.1 200 OK Date : … Set-Cookie : key=value… GET /index.html HTTP/1.1 HOST : … Cookie : key=value…
20 SSL SSL
21 PC LB PC User-Agent: Mac Chrome User-Agent: iPhone Saferi
PC PC PC
22 – LB LB LB
23 HTTP TCP TCP SYN SYN/ACK ACK FIN ACK ACK
FIN
24 SSL SSL HTTPS / SSL HTTP LB HTTPS /
LB HTTPS HTTP SSL
25 TCP 3way SSL 1 ← HelloRequest ClientHello 2 ClientHello
→ 3 ← ServerHello 4 ← ServerCertificate 5 ← ServerKeyExchang e 6 ← CertificateRequest ClientCertificate 7 ← ServerHelloDone 8 ClientCertificate → 9 ClientKeyExchange → 10 CertificateVerify → 11 ChangeCipherSpec → 12 Finished → 13 ← ChangeCipherSpec 14 ← Finished 15 ApplicationData ⇔ ApplicationData
26 OCI OCI BIG-IP OCI LB L3 L4 HTTP/TCP L7
IP IP OCI Cookie to C SSL
27 to C OCI PC OCI BIG-IP OCI LB L3
L4 HTTP/TCP L7 IP IP OCI Cookie to C SSL
None