Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
負荷分散装置について理解を深める
Search
Kohei Saito
January 21, 2020
0
35
負荷分散装置について理解を深める
『負荷分散装置について理解を深める』勉強会用スライド。※本資料に記述された見解は私個人の見解であり、所属する会社&組織の見解を必ずしも反映したものではありません。ご了承ください。
Kohei Saito
January 21, 2020
Tweet
Share
More Decks by Kohei Saito
See All by Kohei Saito
Azure SRE Agent のご紹介
kohei3110
2
84
Java on Azure で LangGraph!
kohei3110
0
190
202504xx_Secure Deployment - GitHub Actions で始める安全な CI_CD パイプライン構築
kohei3110
0
74
ID連携の仕組み・認証/認可について理解を深める
kohei3110
0
28
Kerberos認証について理解を深める
kohei3110
0
38
CDNについて理解を深める
kohei3110
0
35
DNSについて理解を深める
kohei3110
1
120
グラフの機械学習手法 Pg2vec
kohei3110
0
43
最短経路の実行計画について
kohei3110
0
43
Featured
See All Featured
The Power of CSS Pseudo Elements
geoffreycrofte
77
5.9k
Bootstrapping a Software Product
garrettdimon
PRO
307
110k
Designing Experiences People Love
moore
142
24k
The Cost Of JavaScript in 2023
addyosmani
51
8.6k
A Tale of Four Properties
chriscoyier
160
23k
Site-Speed That Sticks
csswizardry
10
720
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
34
5.9k
The Invisible Side of Design
smashingmag
301
51k
How STYLIGHT went responsive
nonsquared
100
5.6k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
15
1.6k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
8
840
A better future with KSS
kneath
238
17k
Transcript
2020/02/19 負荷分散装置について理解を深める
2
3 1. • • DNS • BIG-IP 2. OCI •
OCI BIG-IP • OCI-LB Agenda
4
5 DNS IP DNS test.jp 400 A 150.0.0.1 test.jp 400
A 150.0.0.2 A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP test.jp IP 150.0.0.2 150.0.0.1
6 DNS test.jp 400 A 150.0.0.1 test.jp 400 A 150.0.0.2
A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP 150.0.0.2 150.0.0.1 test.jp IP 150.0.0.1
7 NAT LB 1.1.1.1:5000 3.3.3.3:80 150.0.0.1:80 TCP 2.2.2.2:51000 3.3.3.3:80 150.0.0.3:80
TCP 150.0.0.1 150.0.0.2 150.0.0.3 1.1.1.1 2.2.2.2 IP
8 L3 ICMP IP LB ICMP Echo Request ICMP Echo
Reply LB ICMP Echo Request ICMP Echo Reply Reply NIC NIC NIC NIC
9 L4 3way LB ACK SYN SYN/ACK nginx Apache OS
LB ACK SYN SYN/ACK nginx Apache OS SYN/ACK nginx Apache
10 L7 LB GET /index.html 200 OK /index.html LB GET
/index.html 404 Not Found /index.html
11 IP IP
12 LB 150.0.0.1 150.0.0.2 150.0.0.3 1
13 LB 2 1 1
14 HTTP/1.1 LB 94 98 100 100 100
15 LB 3 5 10 8 8 8
16 IP (or )IP IP (or ) (or ) LB
1.1.1.1 2.2.2.2 IP
17 LB
18 IP IP IP LB 1.1.1.1 150.0.0.1 15 2.2.2.2 150.0.0.3
15 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
19 Cookie Cokkie ID LB 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
HTTP Cookie) Cookie HTTP/1.1 200 OK Date : … Set-Cookie : key=value… GET /index.html HTTP/1.1 HOST : … Cookie : key=value…
20 SSL SSL
21 PC LB PC User-Agent: Mac Chrome User-Agent: iPhone Saferi
PC PC PC
22 – LB LB LB
23 HTTP TCP TCP SYN SYN/ACK ACK FIN ACK ACK
FIN
24 SSL SSL HTTPS / SSL HTTP LB HTTPS /
LB HTTPS HTTP SSL
25 TCP 3way SSL 1 ← HelloRequest ClientHello 2 ClientHello
→ 3 ← ServerHello 4 ← ServerCertificate 5 ← ServerKeyExchang e 6 ← CertificateRequest ClientCertificate 7 ← ServerHelloDone 8 ClientCertificate → 9 ClientKeyExchange → 10 CertificateVerify → 11 ChangeCipherSpec → 12 Finished → 13 ← ChangeCipherSpec 14 ← Finished 15 ApplicationData ⇔ ApplicationData
26 OCI OCI BIG-IP OCI LB L3 L4 HTTP/TCP L7
IP IP OCI Cookie to C SSL
27 to C OCI PC OCI BIG-IP OCI LB L3
L4 HTTP/TCP L7 IP IP OCI Cookie to C SSL
None
kohei3110
geoffreycrofte
garrettdimon
moore
addyosmani
chriscoyier
csswizardry
kevinliebholz
smashingmag
nonsquared
reverentgeek
irinanazarova
kneath
