Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
負荷分散装置について理解を深める
Search
Kohei Saito
January 21, 2020
0
35
負荷分散装置について理解を深める
『負荷分散装置について理解を深める』勉強会用スライド。※本資料に記述された見解は私個人の見解であり、所属する会社&組織の見解を必ずしも反映したものではありません。ご了承ください。
Kohei Saito
January 21, 2020
Tweet
Share
More Decks by Kohei Saito
See All by Kohei Saito
Azure SRE Agent のご紹介
kohei3110
2
94
Java on Azure で LangGraph!
kohei3110
0
190
202504xx_Secure Deployment - GitHub Actions で始める安全な CI_CD パイプライン構築
kohei3110
0
74
ID連携の仕組み・認証/認可について理解を深める
kohei3110
0
28
Kerberos認証について理解を深める
kohei3110
0
38
CDNについて理解を深める
kohei3110
0
35
DNSについて理解を深める
kohei3110
1
120
グラフの機械学習手法 Pg2vec
kohei3110
0
43
最短経路の実行計画について
kohei3110
0
43
Featured
See All Featured
Speed Design
sergeychernyshev
32
1k
Keith and Marios Guide to Fast Websites
keithpitt
411
22k
How to Ace a Technical Interview
jacobian
278
23k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
50
5.5k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
29
1.8k
The Pragmatic Product Professional
lauravandoore
35
6.8k
Fireside Chat
paigeccino
37
3.5k
Building an army of robots
kneath
306
45k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
229
22k
Statistics for Hackers
jakevdp
799
220k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
2.9k
Transcript
2020/02/19 負荷分散装置について理解を深める
2
3 1. • • DNS • BIG-IP 2. OCI •
OCI BIG-IP • OCI-LB Agenda
4
5 DNS IP DNS test.jp 400 A 150.0.0.1 test.jp 400
A 150.0.0.2 A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP test.jp IP 150.0.0.2 150.0.0.1
6 DNS test.jp 400 A 150.0.0.1 test.jp 400 A 150.0.0.2
A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP 150.0.0.2 150.0.0.1 test.jp IP 150.0.0.1
7 NAT LB 1.1.1.1:5000 3.3.3.3:80 150.0.0.1:80 TCP 2.2.2.2:51000 3.3.3.3:80 150.0.0.3:80
TCP 150.0.0.1 150.0.0.2 150.0.0.3 1.1.1.1 2.2.2.2 IP
8 L3 ICMP IP LB ICMP Echo Request ICMP Echo
Reply LB ICMP Echo Request ICMP Echo Reply Reply NIC NIC NIC NIC
9 L4 3way LB ACK SYN SYN/ACK nginx Apache OS
LB ACK SYN SYN/ACK nginx Apache OS SYN/ACK nginx Apache
10 L7 LB GET /index.html 200 OK /index.html LB GET
/index.html 404 Not Found /index.html
11 IP IP
12 LB 150.0.0.1 150.0.0.2 150.0.0.3 1
13 LB 2 1 1
14 HTTP/1.1 LB 94 98 100 100 100
15 LB 3 5 10 8 8 8
16 IP (or )IP IP (or ) (or ) LB
1.1.1.1 2.2.2.2 IP
17 LB
18 IP IP IP LB 1.1.1.1 150.0.0.1 15 2.2.2.2 150.0.0.3
15 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
19 Cookie Cokkie ID LB 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
HTTP Cookie) Cookie HTTP/1.1 200 OK Date : … Set-Cookie : key=value… GET /index.html HTTP/1.1 HOST : … Cookie : key=value…
20 SSL SSL
21 PC LB PC User-Agent: Mac Chrome User-Agent: iPhone Saferi
PC PC PC
22 – LB LB LB
23 HTTP TCP TCP SYN SYN/ACK ACK FIN ACK ACK
FIN
24 SSL SSL HTTPS / SSL HTTP LB HTTPS /
LB HTTPS HTTP SSL
25 TCP 3way SSL 1 ← HelloRequest ClientHello 2 ClientHello
→ 3 ← ServerHello 4 ← ServerCertificate 5 ← ServerKeyExchang e 6 ← CertificateRequest ClientCertificate 7 ← ServerHelloDone 8 ClientCertificate → 9 ClientKeyExchange → 10 CertificateVerify → 11 ChangeCipherSpec → 12 Finished → 13 ← ChangeCipherSpec 14 ← Finished 15 ApplicationData ⇔ ApplicationData
26 OCI OCI BIG-IP OCI LB L3 L4 HTTP/TCP L7
IP IP OCI Cookie to C SSL
27 to C OCI PC OCI BIG-IP OCI LB L3
L4 HTTP/TCP L7 IP IP OCI Cookie to C SSL
None
kohei3110
sergeychernyshev
keithpitt
jacobian
reverentgeek
bluesmoon
lauravandoore
paigeccino
kneath
danielanewman
jakevdp
smashingmag
eileencodes
