Best HTTP load balancing method

Similar Messages

• Load Balance method for proxy - ISA or BlueCoat

  Hi,
  I would like to know that which load balance method such as src-ip, cookie or etc is most suitable for load balancing proxy servers such as ISA or Bluecoat. The Proxy will listen to many services - http, https, ftp, and etc. Thanks for the help.

  The methods you mentioned are not loadbalancing technics, but stickyness features.
  Stickyness is not always necessary.
  Now, for caching devices, it is good to always send users requesting a same object to a single proxy, so that the same object is not cached in all the proxies.
  Therefore, the solution in this case is loadbalancing with url hashing.
  For HTTPs, if you terminate SSL on the loadbalancer, you can use the same solution.
  For all the other traffic, I would suggest to start with roundrobin and see after a while if it requires some adjustments or not.
  Gilles.

• Load Balancing Method

  I want to lod balance two servers using CSS 11503. The requirement is to send all the traffic to Server1 untill it dies. Meaning that...Server2 will be sitting idle and only become active when Server 1 is not available. I am not sure which load balancing method should be used to acheive this result.
  Any suggestions !!!!!

  you should use the sorry server function.
  Here is a link to a sample config.
  http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_configuration_example09186a0080093de8.shtml
  Gilles.

• Help choose the appropriate etherchannel load balance method

  Hi
  I have 2 network architectures :case A and case B  (found architecture below)
  Case A : one server connected on the switch on each site
  Case B : 3 server connected on the switch behind a router on each site
  2 site are connected by 2 wireless link :each wireless link have 105 Mbps bandwith (I absolutly need the agregate bandwith 210)
  Site headquarter is the principal site and site backup is use to backup data located on the principal site
  I use Gbit cisco  2960 switch
  I use etherchannel to agregate the 2 switch port (port 1 and port 2) where the 2 wireless link are connected
  I configure src-mac for case A but all trafic is send only on one wireless link .
  Please help me to choose the more appropriate load balance method to load balance traffic between the 2 link for the case A and for the case B
  Please advise
  Thanks in advance

  Disclaimer
  The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.
  Liability Disclaimer
  In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.
  Posting
  Your Case A might be handled by port hashing, but unfortunately most Cisco platforms don't support it.
  Your Case B isn't much better, as you only have 3 hosts on each side, and according to your drawing, they are behind routers, so you don't want to use MAC hashes.  If you don't have port hashing, next best choice might be src-dest-IP hashing.  Again, though, with just 3 hosts, your distribution will likely not be very balanced, especially over shorter time intervals.
  To obtain best utilization of your links, you need some kind of better link bonding, such as MLPPP (unfortunately, usually won't scale to FE rates) or a hardware MUX.  Next best option, if you could route across the links, would be something like Cisco's OER/PfR which can dynamically load balance.

• OAM 11gR2 Throwing SSL Warning after configured to use HTTPS Load Balancer

  I have configured OAM 11gR2 to use an https load balancer on 14100 and have set my managed servers SSL listen port to 14100 (Could not use 14101 because the HTTPS VIP created was listing on 14100) everything works fine with this configuration, but my logs are filling up the the following warning.
  <Oct 3, 2012 1:41:54 PM UTC> <Warning> <Security> <BEA-090475> <Plaintext data for protocol HTTP was received from peer 10.228.0.1 - 10.228.0.1 instead of an SSL handshake.>
  I know that 10.228.0.1 is the DNS server, but I'm not sure why this happening. Any ideas?

  What is WLS and OHS versions are you using in this environment?
  If it's old version than these, please upgrade WLS to 10.3.3 and the OHS to 11.1.1.3. These is a known bug on WLS side not it OAM.
  I hope this helps,
  Thiago Leoncio.

• LACP Load Balancing Method

  We have two stack of 3750-X switchs interconnected through LACP, and a CheckPoint Firewall connected to one of the stack. The Firewall use a LACP bond to connect to the 3750-X Stack. On the Cisco switches we don't use any Layer3 functionality.
  Since the switch are used in Layer2 mode, can we define the a load balancing method that use IP informations ?
  For example Can we change the load balancing method from src-mac to src-dst-ip ?
  BRgds

    Hi,
  yes you can choose the method of Load balancing in LACP:
  port-channel load-balance {dst-ip | dst-mac | src-dst-ip | src-dst-mac | src-ip | src-mac}
  Configure an EtherChannel load-balancing method.
  The default is src-mac.
  Select one of these load-distribution methods:
  •dst-ip—Load distribution is based on the destination-host IP address.
  •dst-mac—Load distribution is based on the destination-host MAC address of the incoming packet.
  •src-dst-ip—Load distribution is based on the source-and-destination host-IP address.
  •src-dst-mac—Load distribution is based on the source-and-destination host-MAC address.
  •src-ip—Load distribution is based on the source-host IP address.
  •src-mac—Load distribution is based on the source-MAC address of the incoming packet.

• Best way for HTTP load balancing in OSB

  Hi everybody,
  We have setup an OSB cluster and we need to load balance HTTP requests across managed servers. Looking for info about load balancing in OSB I found that there are mainly two options: using a hardware load balancer or a software solution like Weblogic HttpClusterServlet. At the moment we have no hardware balancer available so we will have to take the software option. I found some articles about configuring HttpClusterServlet like http://redstack.wordpress.com/2010/12/20/using-weblogic-as-a-load-balancer.
  But I have a question about this configuration. If we use a managed server as an HTTP proxy that balances requests between OSB managed servers, what would happen if this server goes down? I think one of the main goals of a clustered deployment is avoiding a single point of failure but with that setup all requests would depend on the availability of the proxy managed server.
  Could you recommend us a setup for implementing load balancing in OSB?
  Thank you in advance,
  Daniel.

  Load balancing in a cluster for http requests can be achieved using atleast 4 different ways:
  (1)- use a hardware load balancer like F5 BigIP LTM
  (2)- use a web server with weblogic plugin to frontend the cluster
  (3)- use weblogic with HTTPClusterServlet
  (4)- use DNS round robin - this works if you have managed servers running on 2 machines (say mach1, mach2) but on the same port. HTTP clients use hostname 'mach' to access the URL's and the dns does a round robin name resolution of mach to mach 1 and mach2 IP addresses..
  All the options except (1) achieve only load balancing and not auto failover on all instances.. Hardware load balancers has the extra feature of probing [ sending periodic pings to the targets] , by which it can detect whether the target resource is alive and if not send the traffic to other nodes which are alive.. this is why hardware load balancers are worth their investment..
  other options may work if client is coded to do retrying on failure.. so on 2nd or subsequent attempt, the routing is done to the machine which is alive..
  For options (1),(2) and (3), you also need some redundancy of load balancing device ( web server, weblogic or hardware load balancer) to prevent single point of failure.. Hardware load balancers are usually deployed in redundant pairs to achieve this..
  Edited by: atheek1 on 22/11/2011 15:31

• Load Balancing Methods in Planning

  Ware planning on Load Balancing our two web servers for performance reasons and our consultant and IT side had two different ideas of what this would mean.
  Our IT side wants to us IIS and set up a Virtual Machine/IP that sits on both web servers (which are NIC card connected) thus creating the virtual entry point that would move activity to the least busy server.
  Our consultant was thinking we'd have a seperate piece of HW (like CISCO or Baracuda - F5) that would perform the load balancing on it's own and direct traffic accordingly. He was not aware of an install utilizing the first method and we're wondering if this IIS solution will work or not.
  We are using TOMCAT out of the box here too.
  Any help is appreciated! We're toast on getting a new piece of HW in here in time for us to complete our migration but I just want to make sure we don't waste time going down a path that isn't viable.

  Hi Paul,
  The bulk of the work of a Planning server is performed by the Java App Server.
  To have a highly available Planning environment you will need to look at clustering Tomcat and may need to use something like BEA Weblogic instead.
  Check out the Clustering EPM Web Applications in the below PDF document.
  http://download.oracle.com/docs/cd/E12825_01/epm.111/epm_manual_deployment.pdf
  Regards,
  -John

• 11i load balancing web nodes without use of Hardware http load balancer

  I am looking at note 217368.1 (Advanced Configurations and Topologies for Enterprise Deployments of E-Business Suite 11i) and some other notes on load balancing but some aspects are not clear.
  Aim is to implement load balancing traffic to web nodes without using Hardware ( BigIP, cisco etc) for HTTP layer load balancing.
  Which is more preferable between dns or Apache Jserv load balancer ?
  Need details like failover capabilities, death detection of node, functionality testing and ways to monitor Apache Jserv load balancer.
  Any help in this regard is welcome .
  thx
  arun

  Oracle recommends using loadbalancing hardware rather than using DNS. If you want the features you mention above, you will need a hardware loadbalancer.
  http://blogs.oracle.com/stevenChan/2006/06/indepth_loadbalancing_ebusines.html
  http://blogs.oracle.com/stevenChan/2009/01/using_cisco_ace_series_hardware_load-balancers_ebs12.html
  HTH
  Srini

• CSS 11501 http load balancing

  Hi,
  i have configured to load balancing the http traffic to 2 servers, servers have the ip address 10.10.50.100 and 10.10.50.101 resp and the vip is 10.10.46.10
  iam not able to access the http through the vip, can some one help on this
  am i required to the nating, below is the connectivity
  User -->SW->ASA->CSS->SW->server1 & server2
  iam not able to access the server through vip
  Please help
  Thanks
  Ravi
  Ravi

  What is the default gateway defined on Servers?
  Is it CSS circuit IP or the ASA?
  How is CSS conected? Are there diff vlans connected to servers and ASA? Or CSS is connected to the Switch in one arm mode?
  You need to make sure that the return traffic from Servers should pass through the CSS.
  Syed

• CSS Scalable Load Balancing Method

  Greetings All,
  Looking to the brain trust here for some options on a requested load balancing schema.
  I have a CSS11506 for which I need to configure some 'scalable' load balancing.
  We have 2 servers configured for load balancing... we'll call the services S1 and S2.
  The requirement is to have S1 to service all traffic until its related server CPU reaches 80%. Once this occurs, then traffic should start being sent to S2 for load balancing.
  How can I accomplish this?
  Thanks!
  -Adam

  Gilles,
  Thanks for the reply.
  I'm not real savvy with creating scripted keep-alives from scratch.
  Can you direct me to some links where I can learn more about creating such a script on the CSS?
  Thanks again!
  -Adam

• ACE 4710 HTTPS load balance configuration

  Have two ACE 4710 in HA setup. We would like to setup HTTPS loadbalance(actually just a primary and standby configuration in the serverfarm). Initially this would be for Exchange OWA connections but may expand to more HTTPS connections later.
  I know there are several ways to do SSL with the ACE( client, server, end-to-end). I am just wanting to know the easiest way to deploy this? Is a certificate always needed on the ACE for each connection? In HA mode would a certificate be needed for both or does it replicate in some way to the other ACE?
  Any configuration examples would be helpful.
  Thanks.

  IF you terminate SSL on the ACE you need certificates and key on ace in the context in which you are doing the termination. The certs and keys need to be installed on the active and standby (manually unless using anm to manage).
  when speaking of SSL
  SSL termination refers to ace terminating SSL and sending to server as clear text
  end to end - ACE terminates SSL (to look into payload to make a loadbalance decision or sticky decision) and then re-encrypts to the server, so to the client ACE is an ssl server and to the server the ace is an ssl client.
  You can find some config examples at
  http://docwiki.cisco.com/wiki/Category:Data_Center_Application_Services_Configuration_Examples

• Problem with HTTP load balancing

  Hello Experts
  I have a problem when i do loadbalancing for links like http://1.1.1.1/site/home where 1.1.1.1 is the VIP address (i got http not found), while it is working fine when the link is http://1.1.1.1,
  the link is working fine on the real servers for example when i try http://2.2.2.2/site/home it works
  by the way, im not doing URL loadbalancing,
  any ideas
  Thank you in advance

  It is generally good idea for this type of cases to get a sniffer trace (in ACE module span 10G backplane interface from supervisor or if ACE appliance take parallel span session of client and server vlan).
  This case was investigated in TAC SR and this is a small summary of the traces that may help other users hitting this issue (usually it is good idea to filter by http and client IP) :
  This is what we have seen for the non-working scenario.
  Packet 1: Client sends HTTP GET to ACE VIP
  Packet 2: ACE forwards HTTP GET to RSERVER
  Packet 3: RSERVER answers ACE with HTTP 404
  Packet 4: ACE forwards the real server response (HTTP 404) to the client
  ACE was not changing anything in the packets that were being loadbalanced. And the HTTP 404 error sent from the server that ACE was forwarding indicates that the Web server thinks that the HTTP data stream sent by the client was correct, but simply can not provide the access to the resource specifief by URL.
  Bottom line it was found that in this case the server behaves in a different way based on the hostname used to connect to the application, and this should be addressed on the application/server side. An easy way to check this is by using the server name pointing to the vip in local client hostfile.

• Cookie for HTTP Load Balancing

  I'm getting a lot of bots hitting my site.
  Log entries are very similar (except for the source IP):
  1.247.32.58 - - [11/Dec/2012:22:57:03 -0800] "POST  /?ptrxcz_Ah5qDayLi6TrEbzVtPwSqMtGmJgDa7
  HTTP/1.1" 403 3985 "-" "Mozilla/4.0  (compatible; MSIE 6.0; Windows NT 5.1; SV1)
  Can someone give me an example of how I can filter these out based the "/?ptrxcz..." part? Most of these requests
  have this string in them.
  100 match http cookie testcookie1 cookie-value ptrxcz?
  Do I need a secondary name? I don't quite understand the syntax.
  Thanks!

  Here you go:
  policy-map type loadbalance first-match abc.ca.prod.http-l7slb
    class abc.ca.http-l7class
      drop
    class class-default
      serverfarm SF_nocms.prod
  policy-map multi-match int194-webhosting
    class abc.ca.prod.http
      loadbalance vip inservice
      loadbalance policy abc.ca.prod.http-l7slb
  class-map match-all abc.ca.prod.http
    2 match virtual-address 111.111.111.167 tcp eq www
  class-map type http loadbalance match-all abc.ca.http-l7class
    10 match http cookie secondary ptrxcz.* cookie-value ".*"
  Here's a bigger snippet of what I see in the logs:
  187.244.110.209 - - [12/Dec/2012:15:31:35 -0800] "POST /?ptrxcz_uCVmQegPo4Y4Y3YYoCqB0mj5Ptk8ev HTTP/1.1" 403 3985 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
  87.69.255.148 - - [12/Dec/2012:15:31:35 -0800] "POST /?ptrxcz_MMMMMMMMMMMMMNNNNNNNNNNNNNNNNN HTTP/1.1" 403 3985 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
  180.246.22.189 - - [12/Dec/2012:15:31:36 -0800] "POST /?ptrxcz_555555566666666666667777777777 HTTP/1.1" 403 3985 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
  201.137.39.236 - - [12/Dec/2012:15:31:36 -0800] "POST /?ptrxcz_pppqqqqqqqrrrrrrrssssssstttttu HTTP/1.1" 403 3985 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
  203.127.8.98 - - [12/Dec/2012:15:31:36 -0800] "POST /?ptrxcz_WXXXXXXXYYYYYYYYYYYZZZZZZZZZZZ HTTP/1.1" 403 3985 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
  Thanks again.

• HTTP type connectivity between XI and R3 - load balancing options ?

  Hi
     We have a http type connectivity setup between XI and R3 in order enable XI to communicate with R3 using ABAP proxies. We did this by creating a RFC destination on the ABAP stack of XI of type 'H' ( http connection between R3 systems ). Now, while setting up this rfc destination, there is no option to specify a message server on R3 - we just see a target server field that can be filled in.
  In an rfc destination of type 3 - on the XI box ( which is used for a XI --> R3 idoc adapter ) , I  can see an option for specifying message server.
  Does this mean that using type 'H' connectivity between XI and R3 does not give us an option of hitting the load balancing - message server on R3 and thus cannot use the load balancing setup on R3 ? Is this is a limitation of type 'H' connectivity between XI and R3 ?

  for HTTP load balancing the options seems to be somewhat different....check if these threads provide you any help:
  http://help.sap.com/saphelp_nw04s/helpdata/en/ae/9bfc3f9ec4e669e10000000a155106/content.htm
  http://help.sap.com/saphelp_nw04/helpdata/en/79/a1ce9569444647956b0ec1cf443c4d/content.htm
  http://help.sap.com/saphelp_nw70/helpdata/en/43/39c7b227b91bcbe10000000a1553f7/content.htm
  Regards,
  Abhishek.