hi,
is there a mechanism for doing pure tcp balancing rather than http? the
reason i ask is because i'm trying to set up a load balanced SSL site,
and it currenty works like this:
front facing SSL backhand servers:
[ server a ] [ server b ]
backend non-SSL proxied servers:
[ server c ] [ server d ]
the request comes in to either a or b, and then gets proxied on a
name-based non-ssl connection to c or d. however, the choice of whether
the original request hits a or b is purely dependant on round-robin dns,
so we're not doing proper load balancing of the SSL portion of the work.
in order to be able to run the ssl on the backend servers, and thereby
load balance properly, i need to make the balancing decision before SSL
key exchange has taken place, so i need to send the tcp request straight
through to c or d, depending on load... unless someone's got another way
of doing it, of course... :)
cheers,
Adam
--
Adam Laurie Tel: +44 (20) 8742 0755
A.L. Digital Ltd. Fax: +44 (20) 8742 5995
The Stores http://www.thebunker.net
2 Bath Road http://www.aldigital.co.uk
London W4 1LT mailto:adam@algroup.co.uk
UNITED KINGDOM PGP key on keyservers
is there a mechanism for doing pure tcp balancing rather than http? the
reason i ask is because i'm trying to set up a load balanced SSL site,
and it currenty works like this:
front facing SSL backhand servers:
[ server a ] [ server b ]
backend non-SSL proxied servers:
[ server c ] [ server d ]
the request comes in to either a or b, and then gets proxied on a
name-based non-ssl connection to c or d. however, the choice of whether
the original request hits a or b is purely dependant on round-robin dns,
so we're not doing proper load balancing of the SSL portion of the work.
in order to be able to run the ssl on the backend servers, and thereby
load balance properly, i need to make the balancing decision before SSL
key exchange has taken place, so i need to send the tcp request straight
through to c or d, depending on load... unless someone's got another way
of doing it, of course... :)
cheers,
Adam
--
Adam Laurie Tel: +44 (20) 8742 0755
A.L. Digital Ltd. Fax: +44 (20) 8742 5995
The Stores http://www.thebunker.net
2 Bath Road http://www.aldigital.co.uk
London W4 1LT mailto:adam@algroup.co.uk
UNITED KINGDOM PGP key on keyservers