Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
負荷分散装置について理解を深める
Search
Kohei Saito
January 21, 2020
0
28
負荷分散装置について理解を深める
『負荷分散装置について理解を深める』勉強会用スライド。※本資料に記述された見解は私個人の見解であり、所属する会社&組織の見解を必ずしも反映したものではありません。ご了承ください。
Kohei Saito
January 21, 2020
Tweet
Share
More Decks by Kohei Saito
See All by Kohei Saito
Java on Azure で LangGraph!
kohei3110
0
110
202504xx_Secure Deployment - GitHub Actions で始める安全な CI_CD パイプライン構築
kohei3110
0
61
ID連携の仕組み・認証/認可について理解を深める
kohei3110
0
20
Kerberos認証について理解を深める
kohei3110
0
31
CDNについて理解を深める
kohei3110
0
29
DNSについて理解を深める
kohei3110
1
120
グラフの機械学習手法 Pg2vec
kohei3110
0
40
最短経路の実行計画について
kohei3110
0
33
Featured
See All Featured
Being A Developer After 40
akosma
90
590k
Speed Design
sergeychernyshev
30
990
The World Runs on Bad Software
bkeepers
PRO
68
11k
[RailsConf 2023] Rails as a piece of cake
palkan
55
5.6k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
194
16k
Building Applications with DynamoDB
mza
95
6.4k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
34
3k
Keith and Marios Guide to Fast Websites
keithpitt
411
22k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
357
30k
How to Ace a Technical Interview
jacobian
276
23k
Mobile First: as difficult as doing things right
swwweet
223
9.6k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
46
9.6k
Transcript
2020/02/19 負荷分散装置について理解を深める
2
3 1. • • DNS • BIG-IP 2. OCI •
OCI BIG-IP • OCI-LB Agenda
4
5 DNS IP DNS test.jp 400 A 150.0.0.1 test.jp 400
A 150.0.0.2 A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP test.jp IP 150.0.0.2 150.0.0.1
6 DNS test.jp 400 A 150.0.0.1 test.jp 400 A 150.0.0.2
A test.jp 150.0.0.1 test.jp 150.0.0.2 B .jp test.jp IP 150.0.0.2 150.0.0.1 test.jp IP 150.0.0.1
7 NAT LB 1.1.1.1:5000 3.3.3.3:80 150.0.0.1:80 TCP 2.2.2.2:51000 3.3.3.3:80 150.0.0.3:80
TCP 150.0.0.1 150.0.0.2 150.0.0.3 1.1.1.1 2.2.2.2 IP
8 L3 ICMP IP LB ICMP Echo Request ICMP Echo
Reply LB ICMP Echo Request ICMP Echo Reply Reply NIC NIC NIC NIC
9 L4 3way LB ACK SYN SYN/ACK nginx Apache OS
LB ACK SYN SYN/ACK nginx Apache OS SYN/ACK nginx Apache
10 L7 LB GET /index.html 200 OK /index.html LB GET
/index.html 404 Not Found /index.html
11 IP IP
12 LB 150.0.0.1 150.0.0.2 150.0.0.3 1
13 LB 2 1 1
14 HTTP/1.1 LB 94 98 100 100 100
15 LB 3 5 10 8 8 8
16 IP (or )IP IP (or ) (or ) LB
1.1.1.1 2.2.2.2 IP
17 LB
18 IP IP IP LB 1.1.1.1 150.0.0.1 15 2.2.2.2 150.0.0.3
15 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
19 Cookie Cokkie ID LB 1.1.1.1 2.2.2.2 150.0.0.1 150.0.0.2 150.0.0.3
HTTP Cookie) Cookie HTTP/1.1 200 OK Date : … Set-Cookie : key=value… GET /index.html HTTP/1.1 HOST : … Cookie : key=value…
20 SSL SSL
21 PC LB PC User-Agent: Mac Chrome User-Agent: iPhone Saferi
PC PC PC
22 – LB LB LB
23 HTTP TCP TCP SYN SYN/ACK ACK FIN ACK ACK
FIN
24 SSL SSL HTTPS / SSL HTTP LB HTTPS /
LB HTTPS HTTP SSL
25 TCP 3way SSL 1 ← HelloRequest ClientHello 2 ClientHello
→ 3 ← ServerHello 4 ← ServerCertificate 5 ← ServerKeyExchang e 6 ← CertificateRequest ClientCertificate 7 ← ServerHelloDone 8 ClientCertificate → 9 ClientKeyExchange → 10 CertificateVerify → 11 ChangeCipherSpec → 12 Finished → 13 ← ChangeCipherSpec 14 ← Finished 15 ApplicationData ⇔ ApplicationData
26 OCI OCI BIG-IP OCI LB L3 L4 HTTP/TCP L7
IP IP OCI Cookie to C SSL
27 to C OCI PC OCI BIG-IP OCI LB L3
L4 HTTP/TCP L7 IP IP OCI Cookie to C SSL
None
kohei3110
akosma
sergeychernyshev
bkeepers
palkan
afnizarnur
mza
rmw
keithpitt
bermonpainter
jacobian
swwweet
mongodb
