Upgrade to Pro — share decks privately, control downloads, hide ads and more …

5 Keys to High Availability Applications

Lee Atchison
March 25, 2016
Technology
0
100

5 Keys to High Availability Applications

Building a scalable application that has high availability is not easy and does not come automatically. To that end, this webcast focuses on five keys that will help build applications that, as their use scales upwards, availability remains high.

Lee Atchison

March 25, 2016
Tweet

More Decks by Lee Atchison

See All by Lee Atchison
Monitoring the Dynamic Nature of the Cloud
leeatchison
0
66
Cloudy with a Chance of Scaling
leeatchison
0
52
Cloud Expo: Flying Two Mistakes High
leeatchison
0
96
Cloud Expo: Static vs Dynamic Cloud
leeatchison
0
170
AWS Summit Sydney: Life’s Too Short...for Cloud without Analytics
leeatchison
0
57
Life's Too Short for Cloud without Analytics
leeatchison
0
42
AWS Summit - Chicago 2016 - New Relic - Monitoring the Dynamic Cloud
leeatchison
0
97
Enterprise Cloud Adoption Strategies
leeatchison
0
60

Other Decks in Technology

See All in Technology
VSCodeの拡張機能を作っている話
ebarakazuhiro
1
830
2023年度にEMとして頑張ったこと
ikefukurou777
0
110
ExaDB-D dbaascli で出来ること
oracle4engineer
PRO
0
2.1k
個人のAWSアカウントをマルチ運用してみた
miura55
2
200
MixIT 2024 - Pulumi : Gérer son infra avec son langage de programmation préféré
ju_hnny5
1
120
LLM開発・活用の舞台裏@2024.04.25
yushin_n
3
1.3k
【SORACOM UG 東海】あらゆるモノがつながる社会へ、IoT と SORACOM
soracom
PRO
1
160
AWSやJAWS-UGとの出会いを振り返る
yoyoyopg
1
120
20分で完全に理解するGrafanaダッシュボード
hamadakoji
5
950
Gemini, Google's Large Language Model
glaforge
0
110
IaCからAWSに入門した初心者が CloudFormationを通して考えた「AWS操作」の使い分け
maimyyym
2
530
中年男性がメインフレームから クラウドへキャリアシフトしてみた
uechishingo
0
340

Featured

See All Featured
For a Future-Friendly Web
brad_frost
172
9k
Producing Creativity
orderedlist
PRO
338
39k
10 Git Anti Patterns You Should be Aware of
lemiorhan
649
58k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
26
2.3k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
245
20k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
221
21k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
22
1.6k
The Straight Up "How To Draw Better" Workshop
denniskardys
228
130k
Building Applications with DynamoDB
mza
88
5.6k
BBQ
matthewcrist
80
8.8k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
126
32k
The Cult of Friendly URLs
andyhume
74
5.7k

Transcript

  1. 5 Keys to Building High Availability Web Applications for Service

    and Microservice Based Systems Lee Atchison, Principal Cloud Architect and Advocate Confidential ©2008–16 New Relic, Inc. All rights reserved.

  2. Confidential ©2008–16 New Relic, Inc. All rights reserved.

  3. Confidential ©2008–16 New Relic, Inc. All rights reserved.

  4. Confidential ©2008–16 New Relic, Inc. All rights reserved.

  5. You had power most of the time. Why are you

    complaining? Confidential ©2008–16 New Relic, Inc. All rights reserved.

  6. How do you keep an application operational? Confidential ©2008–16 New

    Relic, Inc. All rights reserved.

  7. 5 Keys to High Availability Web Applications Confidential ©2008–16 New

    Relic, Inc. All rights reserved. Key 4 Key 3 Key 2 Key 1 Key 5

  8. Key 4 Key 3 Key 2 Key 1 Build applications

    keeping availability in mind Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved. OR Develop for failure

  9. Confidential ©2008–16 New Relic, Inc. All rights reserved. Services will

    fail

  10. Confidential ©2008–16 New Relic, Inc. All rights reserved. … always.

    Services will fail

  11. As a Service Developer… Your response to a dependency failure

    must be Confidential ©2008–16 New Relic, Inc. All rights reserved.

  12. As a Service Developer… Your response to a dependency failure

    must be Understandable Confidential ©2008–16 New Relic, Inc. All rights reserved.

  13. As a Service Developer… Your response to a dependency failure

    must be Predictable Understandable Confidential ©2008–16 New Relic, Inc. All rights reserved.

  14. As a Service Developer… Your response to a dependency failure

    must be Predictable Reasonable for the given dependency failure Understandable Confidential ©2008–16 New Relic, Inc. All rights reserved.

  15. How should I respond when a dependency fails? Don’t know

    something? Don’t show it! § Don’t show a drop down list of accounts if you can’t contact the account service § Don’t show an image (or show a placeholder) if you can’t determine which image to show Provide a graceful backoff Confidential ©2008–16 New Relic, Inc. All rights reserved.

  16. 16 Example (Real Life) Our web application showing a page…

    One day, that 3rd party system failed An avatar was representing the customer on each page The app didn’t know what to do – so it failed, too A 3rd party system generated the avatar Our application was completely down , all because of a minor icon missing...

  17. 17 Why did this cause your application to fail? §

    Recognized the failure of the 3rd party provider as soon as possible § Substitute a generic image (or removed it) when the service failure was detected § Circuit Breaker pattern would help a lot here It didn’t know how to respond. It could have:

  18. How should I respond when a dependency fails? Fail as

    early as possible: § Don’t propagate bad data… once you determine a piece of data is invalid, discard it as soon as possible § Validate input given… reject bad input immediately Provide a graceful backoff Confidential ©2008–16 New Relic, Inc. All rights reserved.

  19. 19 Example (Real Life) Account service was having performance problems

    … Customers felt a performance problem Someone was sending bad requests 400 System had “browned out” 0 Service tried to process the request… (And eventually failed)

  20. 20 So, what brought our application to its knees? §

    Input to the service was obviously bad § Yet, we attempted to use the input § Result was a failed service

  21. The Lesson Confidential ©2008–16 New Relic, Inc. All rights reserved.

  22. Key 4 Key 3 Key 2 Key 1 Always think

    about scaling OR Just because your application works now does not mean it will work tomorrow… Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved. Build applications keeping availability in mind OR Develop for failure

  23. Just because your application works now does not mean it

    will work tomorrow… Why? § Most web applications have increasing traffic patterns § Traffic will increase, double, triple, 10x…sooner than you think § Don’t build it for today’s traffic build it for tomorrow’s traffic Confidential ©2008–16 New Relic, Inc. All rights reserved.

  24. Build for tomorrow might mean: § Build in the ability

    to increase the size and capacity of your databases. § Determine what logical limits exist to your data scaling. What happens when your database tops out in its capabilities? § Build your application so that you can add additional application servers easily. This often involves being observant about where and how state is maintained, and how traffic is routed.* § Think about caching. What information can be cached? What can't? Why can't it? § Redirect static traffic to offline providers. § Think about whether specific pieces of dynamic content can actually be generated statically. * This topic is large enough for an entire chapter, even an entire book, on on its own. Confidential ©2008–16 New Relic, Inc. All rights reserved.

  25. Example: Is It Static or Dynamic? Confidential ©2008–16 New Relic,

    Inc. All rights reserved.

  26. Example: Is It Static or Dynamic? Non-static content Confidential ©2008–16

    New Relic, Inc. All rights reserved.

  27. Example: Is It Static or Dynamic? Non-static content Banner is

    now static Confidential ©2008–16 New Relic, Inc. All rights reserved.

  28. Example: Is It Static or Dynamic? Non-static content Banner is

    now static Personalized content can be added in browser Confidential ©2008–16 New Relic, Inc. All rights reserved.

  29. Key 4 Key 3 Key 2 Key 1 Always think

    about scaling OR Just because your application works now does not mean it will work tomorrow… Mitigate risk Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved. Build applications keeping availability in mind OR Develop for failure

  30. All Systems Have Risk in Them Risk is a measure

    of the likelihood of a surprise occurring Server will crash Database will get corrupted Returned answer will be incorrect Network connection will fail Newly deployed piece of software will fail There is risk that a … Confidential ©2008–16 New Relic, Inc. All rights reserved.

  31. Risk § Keeping a system available requires removing risk… Hence,

    removing surprise § But as systems become more and more complicated… ... this becomes less and less possible Confidential ©2008–16 New Relic, Inc. All rights reserved.

  32. Risk Managing what your risk is Managing how much risk

    is acceptable Knowing what you can do to mitigate the risk Risk Management is at the heart of building highly available systems Confidential ©2008–16 New Relic, Inc. All rights reserved.

  33. Risk Knowing what you can do to mitigate the risk

    Confidential ©2008–16 New Relic, Inc. All rights reserved. Risk mitigation

  34. Risk Mitigation Risk mitigation is part of risk management Risk

    mitigation: § Knowing what to do when a problem occurs in order to reduce the impact of the problem § Making sure your application works as best and as completely as possible, even when services and resources fail Confidential ©2008–16 New Relic, Inc. All rights reserved.

  35. Risk Mitigation Risk mitigation requires thinking about the things that

    can go wrong … and putting a plan together, now … to be able to handle the situation when it does happen. Confidential ©2008–16 New Relic, Inc. All rights reserved.

  36. Key 4 Key 3 Key 2 Key 1 Always think

    about scaling OR Just because your application works now does not mean it will work tomorrow… Mitigate risk Monitor availability OR Yes, we can help you Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved. Build applications keeping availability in mind OR Develop for failure

  37. Monitor Availability § Understand how your application is performing §

    Use application monitoring: § Keep an eye on how your app is performing § Generate notifications when the application performs in abnormal ways § Make sure your app is properly instrumented § Internal as well as external to your app Confidential ©2008–16 New Relic, Inc. All rights reserved.

  38. Monitor Availability § Have your tools monitor continuously § Establish

    a baseline for how your application is performing § Look for trends and patterns § Look for outliers and deviations from the trends § Treat these as potential availability issues § As your system grows: § Examine how your baseline changes § Make sure your scalability plan will continue to work Confidential ©2008–16 New Relic, Inc. All rights reserved.

  39. Service Level Agreements Establish Internal SLAs Quick diagnoses “Hot spots”

    to optimize performance Confidential ©2008–16 New Relic, Inc. All rights reserved.

  40. Service Level Agreements Establish Internal SLAs Quick diagnoses “Hot spots”

    to optimize performance Critical to building scalable application Only way to scale an organization in a reliable way is with reliable SLAs Confidential ©2008–16 New Relic, Inc. All rights reserved.

  41. Availability response OR Yes, that was your pager that went

    off Key 4 Key 3 Key 2 Key 1 Always think about scaling OR Just because your application works now does not mean it will work tomorrow… Mitigate risk Monitor availability OR Yes, we can help you Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved. Build applications keeping availability in mind OR Develop for failure

  42. Responsiveness When a problem occurs… § Do you know what

    to do to fix the problem? § Does everyone on your team know what to do? § Do you have playbooks? § Does your pager rotation and notification system work? Confidential ©2008–16 New Relic, Inc. All rights reserved.

  43. Responsiveness You must be prepared to act on issues. This

    means: § Alerts that reach the needed individuals § Prepared processes and procedures for common failure modes (this is part of risk mitigation process) Confidential ©2008–16 New Relic, Inc. All rights reserved.

  44. Responsiveness When an alert is triggered… § Owner of that

    service must be first ones alerted § Other teams may want to be alerted as well… § Services that are tightly dependent on triggered service § Early warning notification for upstream or downstream issues § May want a “second level” notification for dependencies Confidential ©2008–16 New Relic, Inc. All rights reserved.

  45. Responsiveness BEFORE the problem occurs: § Well established plans §

    Documented processes and cheat sheets § Contact lists for critical consuming service owners § Clear, precise escalation plan: § Who to contact if problem becomes too big for responder to handle § If scope of problem extends significantly and critically beyond failing system § Know who to escalate if first responder doesn’t respond Confidential ©2008–16 New Relic, Inc. All rights reserved.

  46. 5 Keys to High Availability Web Apps Availability response Key

    4 Key 3 Key 2 Key 1 Build applications keeping availability in mind Always think about scaling Mitigate risk Monitor availability Key 5 Confidential ©2008–16 New Relic, Inc. All rights reserved.

  47. Q Thank you for your time! Questions? Lee Atchison [email protected]

    www.leeatchison.com @leeatchison leeatchison Architecting for Scale Published by: O’Reilly Media Available: May 2016 www.architectingforscale.com Confidential ©2008–16 New Relic, Inc. All rights reserved.