Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. mod_backhand>
  3. users
[mod_backhand-users] Kernel 2.4.2, iptables, fake,redirection and mod_backhand
dejan at talksurgery
Mar 5, 2001, 11:49 AM
Post #1 of 4 (520 views)
Permalink
I'm happy heartbeat works for you Tilman. Unfortunately for me, since
I'm using a hosting company, adding additional hardware to my machines
is somewhat of a pain. So I guess I'll continue using fake :)

Regards,

Dejan


--__--__--

Message: 8
Date: Mon, 05 Mar 2001 11:40:26 +0100
Subject: Re: [mod_backhand-users] Kernel 2.4.2, iptables, fake,
redirection and mod_backhand
From: Tilman Kastner <kastner@devicen.de>
To: "Theo E. Schlossnagle" <jesus@omniti.com>
CC: <backhand-users@lists.backhand.org>

am 05.03.2001 7:54 Uhr schrieb Theo E. Schlossnagle:

(snip)

As you can see, Machine 1 and 2 are actually working backends, with
Machine
1 usually serving as frontend, too. If it goes down, heartbeat on
Machine 2
will detect this via Ethernet and serial cable, fire up the virtual
interface for the official IP and start the http-frontend on that
interface. I am aware of the fact that IP takeover this way works only
with
2 machines, but that's enough for us. A serial cable is not mandatory,
you
can also have two different ethernet connections AFAIK. That would allow
for
more distance between the machines, but you might get in routing trouble
then...

BTW: some ideas regarding my MIME-type-mess posting?

Best regards,

Tilman
[mod_backhand-users] Kernel 2.4.2, iptables, fake,redirection and mod_backhand [ In reply to ]
jesus at omniti
Mar 5, 2001, 6:39 PM
Post #2 of 4 (498 views)
Permalink
Dejan Macesic wrote:
>
> I'm happy heartbeat works for you Tilman. Unfortunately for me, since
> I'm using a hosting company, adding additional hardware to my machines
> is somewhat of a pain. So I guess I'll continue using fake :)
>

To be fare though. This is an argument against using haertbeats, but not
against using LVS. I don't see why LVS wouldn't work with fake. Maybe I am
missign something or I have something backwards?

Running some sort of "fake"ish thing on a cluster of machines running LVS
naively dsitrbuting across themselves runnin mod_backhand to fix the mistakes
seems like it would work fine -- as convoluted as it is.

LVS will be able to handle more traffic than mod_backhand any day of the week
-- it happens in the kernel. mod_backhand requires the context switching of a
process and proxying the request+response on the application level -- same
overhead (sans the connect() every time) as mod_proxy.

If you can at least get a decent distribution of requests across you machines,
you will gain a considerable advantage. Many people use multiple DNS RR
records to do this, but it has horrible HA problems.

The only time you won't want to do something like this is when ytou are
balancing based on user sessions. This is because, assuming a random
assignment by LVS or some other load balancer, you will be assigned to he
wrong server 1-(1/n) of the time!

Just my two cents.

--
Theo Schlossnagle
1024D/A8EBCF8F/13BD 8C08 6BE2 629A 527E 2DC2 72C2 AD05 A8EB CF8F
2047R/33131B65/71 F7 95 64 49 76 5D BA 3D 90 B9 9F BE 27 24 E7
[mod_backhand-users] Kernel 2.4.2, iptables, fake,redirection and mod_backhand [ In reply to ]
dejan at talksurgery
Mar 5, 2001, 6:58 PM
Post #3 of 4 (502 views)
Permalink
Correct me if I'm wrong, but I have already downloaded the LVS code and
went through the documentation. LVS requires you use their DNS
package... I couldn't find an example where an external DNS could be
used.

Also, Theo, you mentionned that LVS machines can't also be used to
service web requests. Why so?

Dejan


"Theo E. Schlossnagle" wrote:
>
> Dejan Macesic wrote:
> >
> > I'm happy heartbeat works for you Tilman. Unfortunately for me, since
> > I'm using a hosting company, adding additional hardware to my machines
> > is somewhat of a pain. So I guess I'll continue using fake :)
> >
>
> To be fare though. This is an argument against using haertbeats, but not
> against using LVS. I don't see why LVS wouldn't work with fake. Maybe I am
> missign something or I have something backwards?
>
> Running some sort of "fake"ish thing on a cluster of machines running LVS
> naively dsitrbuting across themselves runnin mod_backhand to fix the mistakes
> seems like it would work fine -- as convoluted as it is.
>
> LVS will be able to handle more traffic than mod_backhand any day of the week
> -- it happens in the kernel. mod_backhand requires the context switching of a
> process and proxying the request+response on the application level -- same
> overhead (sans the connect() every time) as mod_proxy.
>
> If you can at least get a decent distribution of requests across you machines,
> you will gain a considerable advantage. Many people use multiple DNS RR
> records to do this, but it has horrible HA problems.
>
> The only time you won't want to do something like this is when ytou are
> balancing based on user sessions. This is because, assuming a random
> assignment by LVS or some other load balancer, you will be assigned to he
> wrong server 1-(1/n) of the time!
>
> Just my two cents.
>
> --
> Theo Schlossnagle
> 1024D/A8EBCF8F/13BD 8C08 6BE2 629A 527E 2DC2 72C2 AD05 A8EB CF8F
> 2047R/33131B65/71 F7 95 64 49 76 5D BA 3D 90 B9 9F BE 27 24 E7
[mod_backhand-users] Kernel 2.4.2, iptables, fake,redirection and mod_backhand [ In reply to ]
jesus at omniti
Mar 5, 2001, 7:05 PM
Post #4 of 4 (498 views)
Permalink
Dejan Macesic wrote:
>
> Correct me if I'm wrong, but I have already downloaded the LVS code and
> went through the documentation. LVS requires you use their DNS
> package... I couldn't find an example where an external DNS could be
> used.

Here is how I understand it, though I have never really deployed LVS :-)

LVS just uses Linux's IPVS kernel feature to present an VIP (virtual IP) to
the rest of the world and internally NAT it to one of several back end
machines. It has a handful of algorithms that it can use to decide which
server to direct the TCP/IP session to.

> Also, Theo, you mentionned that LVS machines can't also be used to
> service web requests. Why so?

I was corrected on this issue. Someone said that with two interfaces in a
machine (perhaps even virtual) you can use LVS to direct to the local machine.

--
Theo Schlossnagle
1024D/A8EBCF8F/13BD 8C08 6BE2 629A 527E 2DC2 72C2 AD05 A8EB CF8F
2047R/33131B65/71 F7 95 64 49 76 5D BA 3D 90 B9 9F BE 27 24 E7

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal