簡略化したネットワーク依存関係グラフの可視化基盤 / Simplified network dependency graph visualization

A658ec7f1badf73819dfa501165016c1?s=47 Yuuki Tsubouchi (yuuk1)
November 17, 2018
Research
2
19k

簡略化したネットワーク依存関係グラフの可視化基盤 / Simplified network dependency graph visualization

第3回Web System Architecture研究会@東京

A658ec7f1badf73819dfa501165016c1?s=128

Yuuki Tsubouchi (yuuk1)

November 17, 2018
Tweet

More Decks by Yuuki Tsubouchi (yuuk1)

See All by Yuuki Tsubouchi (yuuk1)
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
240
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
5
740
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
54
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
38
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
15
22k
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
7
830
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
9
5.4k
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
2
16k
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
10
1.2k

Other Decks in Research

See All in Research
8ba32afb4b7d6967cb38b2dadf1ddd80?s=48 daigo0927
0
450
09ed5afcc83ed2abfea708651c975882?s=48 shunk031
0
550
D7ef5177ffe7ddec8dc5e11547963f99?s=48 motokimura
2
440
638dd29baf6aa478d8eb0aeb0075c404?s=48 sshimizu2006
0
120
E21d1f0881d623ba04709e94d75be2a8?s=48 tam17aki
0
190
Fcd0a635b9bdca525510839713b80103?s=48 supergabs
0
320
C29f097d23f8904532ca088ac23ce801?s=48 kayceesrk
0
980
24181c881290162bdd810014c5b880d9?s=48 maguro27
1
510
A42dd3541cd40296dcd8a5e6b4a01bef?s=48 scatterlab
0
580
059fb717431a8cd2b509ffebc57d905a?s=48 trycycle
0
270
2fb31d9e685d0533a22475951301ec67?s=48 takuma_okamoto
0
350
0fee20d8bbb7283e1887e7075f638f59?s=48 eumesy
2
1.1k

Featured

See All Featured
C620790ae5bf5b50c245b2e0ef95f338?s=48 deanohume
294
27k
39488f9d172ab92fd352f2cd7b73258d?s=48 mza
80
4k
A0517b08532aec8ab2aae3f65d40ad86?s=48 hannesfritz
26
870
462dad0dd24c568a32dcdb0ae895ae1b?s=48 rasmusluckow
315
18k
3d4519fd34b76fb265fc0237f3792bd4?s=48 danielanewman
196
19k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
391
60k
3d6ace9554821d552146413bcdf874f6?s=48 trishagee
13
770
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
8
1k
Fe6b81005d1553accd6b2a28f6a2bef1?s=48 phodgson
85
3.8k
D8fc2580cfaca035f666d9e4ee79a7f7?s=48 mongodb
23
3.7k
B3d6434763caa0ef5dc4b792662c49f7?s=48 smashingmag
228
17k
D83926c323d4f9289f947b4b4e76b939?s=48 jensimmons
205
9.9k

Transcript

  1. ؆ུԽͨ͠ ωοτϫʔΫґଘؔ܎άϥϑ ͷՄࢹԽج൫ id:y_uuki, id:masayoshi, ͸ͯͳ 2018/11/17 ୈ3ճ Web System

    Architectureݚڀձ@౦ژ

  2. ໨࣍ 1. എܠͱ໨త 2. ఏҊख๏ 3. ·ͱΊ

  3. 1. എܠͱ໨త

  4. എܠ • ωοτϫʔΫґଘؔ܎ͷෳࡶԽ • 10೥୯ҐͷαʔϏεͷ௕ظӡ༻ͷؒʹ౓ॏͳΔ૿ங • ϚΠΫϩαʔϏεͳͲͷۙ೥ͷτϨϯυมԽ • γεςϜ؅ཧऀ͕هԱͰ͖ͳ͍ݸʑͷ௨৴ͷґଘؔ܎ •

    Өڹൣғ͕Θ͔Βͳ͍ͨΊɺมߋͷͨͼʹґଘؔ܎Λ ௐࠪ͢Δඞཁ͕ൃੜ

  5. ઌߦख๏ • ϑΝΠΞ΢ΥʔϧͷϩΪϯάػߏ΍ύέοτΩϟϓνϟ • TCP/UDP௨৴ϩάΛूܭαʔόʹసૹ͠ґଘՄࢹԽ • ωοτϫʔΫεΠον͔Βͷ౷ܭ৘ใऔಘ (sFlow/NetFlowͳͲ) • αΠυΧʔϓϩΩγ΍ΞϓϦέʔγϣϯϩά

    (෼ࢄτϨʔγϯά)

  6. ֤ઌߦख๏ͷ՝୊ • ϑΝΠΞ΢ΥʔϧϩΪϯά(iptables) • a) ύέοτϨΠςϯγ͕૿Ճ • ύέοτΩϟϓνϟ(tcpdump) • b)

    ύέοτશମΛऩू͢ΔͨΊɺऩू·ͨ͸ղੳͷͨΊͷෛՙͷ૿Ճ • sFlow/NetFlow • c) αϯϓϦϯά͞ΕΔͨΊґଘ໢ཏ཰͕௿Լ • ΞϓϦέʔγϣϯ૚(L7)ͰͷϦΫΤετ୯ҐͷϩΪϯά • d) ΞϓϦέʔγϣϯͷมߋ͕ඞཁ

  7. ઌߦख๏શମͷ՝୊ • e) ऩूσʔλ͕ґଘؔ܎Λ஌Δ͚ͩʹͯ͠͸਺͕ଟ͘৑௕ • ύέοτɺTCP઀ଓɺϦΫΤετ୯Ґͷ৘ใ • ྫ͑͹ΤϑΣϝϥϧϙʔτͷ઀ଓ৘ใͳͲ • f)

    ґଘؔ܎άϥϑߏ଄ͷෳࡶԽ • ෛՙ෼ࢄͳͲʹΑΓϗετ਺͕૿Ճͨ͠৔߹ʹϊʔυͱΤο δͷݸ਺͕૿͑Δ

  8. 2. ఏҊख๏

  9. ཁ݅ • 1)ΞϓϦέʔγϣϯੑೳʹӨڹΛ༩͑ͳ͍઀ଓ৘ใͷऩूՄೳ (՝୊ a),b),c)) • ݱ࣮తͳਫ਼౓Ͱ઀ଓ৘ใͷऩू΋ཱ྆ • 2)ΞϓϦέʔγϣϯͷมߋෆཁͰऩूՄೳ (՝୊d)

    • 3)ू໿Խ͞Εͨϊʔυ୯ҐͰՄࢹԽՄೳ (՝୊e) • 4)ϗετ୯ҐͰ͸ͳ͘ϗετͷෳ੡άϧʔϓ୯ҐͰՄࢹԽՄೳ ՝୊ f) • 5)೚ҙͷ࣌ؒൣғͰͷґଘؔ܎Λग़ྗՄೳ

  10. ఏҊख๏ • ΞϓϦέʔγϣϯͷมߋෆཁͳωοτϫʔΫ௨৴৘ใͷऩू (ཁ݅2) • OSʹ໰͍߹ΘͤऔಘՄೳͳTCP઀ଓ৘ใΛར༻ • ΞϓϦέʔγϣϯੑೳʹӨڹΛ༩͑ͳ͍TCP઀ଓ৘ใͷऩू (ཁ݅1) •

    OS͕΋ͭ௿ෛՙͰऔಘՄೳͳTCP઀ଓͷ౷ܭ৘ใΛར༻ • ू໿Խ͞ΕͨΤοδͱϊʔυ୯ҐͰՄࢹԽՄೳ • Τοδ: ಉҰϗετ͔ͭಉҰϦοεϯϙʔτ΁ͷTCP઀ଓू໿ (ཁ݅3) • ϊʔυ: αʔό؅ཧπʔϧͷAPIͱ࿈ܞՄೳ (ཁ݅4) • ίωΫγϣϯ؅ཧDBʹू໿Խ͞ΕͨTCP઀ଓΛ࣌ؒ෇͖Ͱ؅ཧՄೳ (ཁ݅5)

  11. ϗετϑϩʔू໿ • Τοδ: ಉҰϗετ͔ͭಉҰϦοεϯϙʔτ΁ͷTCP઀ଓू໿ • Τοδͷ໼ҹͷ޲͖: TCPͷΞΫςΟϒΦʔϓϯͱύογϒΦʔϓϯͰ൑ఆ port 80 port

    3306 port 10000 port 10001 port 10002 port 15000 port 15001 port 15002 ϗετϑϩʔ ϗετϑϩʔ Host Host

  12. ϗετϑϩʔू໿ͷ࣮૷ • 1. Netlink APIʹΑΓTCP઀ଓ৘ใΛऔಘ͢Δ • 2. LISTENεςʔτͷ઀ଓͷϩʔΧϧϙʔτͷΈநग़ • 3.

    1.ͱ2.Λಥ͖߹Θͤɼ઀ଓઌϙʔτ͕ϦοεϯϙʔτͰ͋Ε ͹ΞΫςΟϒΦʔϓϯɼͦΕҎ֎ͷ઀ଓ͸ύογϒΦʔϓϯͱ ൑ఆ͢Δɽ

  13. send agent agent CMDB Host Host agent Host analyzer sysadmin

    get get ఏҊख๏ͷશମϑϩʔ֓ཁ

  14. send agent agent Postgres Host Host agent Host CLI sysadmin

    get get ఏҊख๏ͷશମϑϩʔ֓ཁ Mackerel get

  15. CMDBͷεΩʔϚ • nodesςʔϒϧ: ϊʔυ৘ใ • IDͱIPΞυϨεͱϙʔτ൪߸ • flowsςʔϒϧ: ϗετϑϩʔ৘ใ •

    IDͱ޲͖ͱૹ৴ݩͱૹ৴ઌͷͦΕͧΕͷϊʔυID

  16. Mackerel APIʹΑΔෳ੡ϊʔυͷάϧʔϓԽ • ͋Β͔͡Ί֤ϗετΛMackerelʹొ࿥͠ɺෳ੡͞Εͨϗετ܈Λ1 ͭͷϩʔϧʹ·ͱΊ͓ͯ͘ • MackerelΛར༻ͨ͠ෳ੡ϊʔυͷάϧʔϓԽखॱ • analyzer͕CMDB͔ΒϊʔυΛऔಘ •

    Mackerel APIʹΑΓϗετ৘ใҰཡΛऔಘ͠౰֘ϊʔυͷIPΞυ ϨεͰϑΟϧλ • ಉҰϩʔϧ಺ͷϊʔυΛάϧʔϓԽ

  17. github.com/yuuki/mftracer $ mftctl --level 2 --dest-service blog --dest-roles redis --dest-roles

    memcached blog:redis ᵋ<-- 10.0.0.22:many (connections:30) ᵋ<-- 10.0.0.23:many (connections:30) ᵋ<-- 10.0.0.24:many (connections:30) ᵋ<-- 10.0.0.30:many (connections:1) ᵋ<-- 10.0.0.31:many (connections:1) ᵋ<-- 10.0.0.25:many (connections:30) blog:memcached ᵋ<-- 10.0.0.23:many (connections:30) ᵋ<-- 10.0.0.25:many (connections:30)

  18. ࣮૷্ͷ՝୊ • ωοτϫʔΫτϙϩδͷ॥؀ʹର͢Δߟྀ • Ϋϥ΢υࣄۀऀ͕ఏڙ͢ΔϚωʔδυαʔϏεΛར༻͍ͯ͠Δ ৔߹ɼIPΞυϨε͔Β࣮ମΛͨͲΔ͜ͱͷࠔ೉ • ͋ΔಛఆͷϊʔυΛࢦఆ͠ɼࢦఆͨ͠ϊʔυ”͔Β”઀ଓ͢Δ ϊʔυҰཡΛऔಘ͢Δ࣮૷ (ٯ͸Մೳ)

    • ࣌ؒൣғΛࢦఆͨ͠ґଘؔ܎ͷऔಘ • ݱࡏ͔Βաڈ͢΂ͯͷґଘؔ܎Λऔಘ͢ΔΑ͏ʹͳ͍ͬͯΔ

  19. 3. ·ͱΊ

  20. ·ͱΊ • γεςϜ؅ཧऀ͕ݸʑͷωοτϫʔΫґଘؔ܎ΛهԱͰ͖ͳ͍ • ΞϓϦέʔγϣϯΛมߋͤͣʹɼΞϓϦέʔγϣϯʹӨڹΛ༩ ͑Δ͜ͱͳ͘ɼద੾ͳந৅౓Ͱ৘ใΛऔಘՄೳͳґଘؔ܎ղੳ γεςϜ

  21. ࠓޙͷ՝୊ • αʔϕΠ • ֤ωοτϫʔΫ૚Ͱઌߦݚڀ͕͋ΔͨΊɺຊݚڀͷཱͪҐஔΛ໌֬Խ • ධՁ • ϑΝΠΞ΢ΥʔϧϩΪϯάͱύέοτΩϟϓνϟͷϨΠςϯγ૿େͷධՁ •

    ͢΂ͯͷ઀ଓ৘ใΛऔಘͰ͖ΔΘ͚Ͱ͸ͳ͍ͨΊɼ઀ଓ৘ใͷऔಘ཰Λ֬ ೝ͠ɼ࣮ӡ༻ʹ͓͍ͯɼे෼ͳਫ਼౓Ͱ͋Δ͜ͱΛ֬ೝ • ల๬ • ಉ͡Α͏ͳ௨৴Λ͍ͯ͠ΔϗετΛΫϥελϦϯάਪఆ • ίϯςφܕԾ૝Խ؀ڥͰͷґଘؔ܎ͷղੳ΁ͷൃల