180 likes | 357 Views
Disaster Relief by the Pound. CS5260 Semester Project University of Colorado at Colorado Springs By Robin Kimzey and Cliff McCullough 02 May 2011. Disaster Relief Information Collection and Distribution Research Group.
E N D
Disaster Relief by the Pound CS5260 Semester Project University of Colorado at Colorado Springs By Robin Kimzey and Cliff McCullough 02 May 2011
Disaster Relief Information Collection and Distribution Research Group DRINCDR Main Page. February 15, 2011. http://gandalf.uccs.edu/drincdr/index.php/Main_Page (accessed April 23, 2011). Robin Kimzey and Cliff McCullough
Mashup • Combines data and functionality from more than one source • Layered content • Each layer of content comes from different servers in the cloud • Some layers are classified, others are not • Pound acts as a functional smoke screen providing one point of contact for users Robin Kimzey and Cliff McCullough
Implementation Robin Kimzey and Cliff McCullough
Easy Maintenance • No hardware purchases • No HVAC • No rack space Robin Kimzey and Cliff McCullough
Remain Dormant • Amazon EC2: Turn on instances once a month for updates and patches • When a disaster occurs, turn on more backend servers as demand increases Robin Kimzey and Cliff McCullough
Disadvantages • Computing services must be geographically dispersed • Must trust the security of the commercial provider Robin Kimzey and Cliff McCullough
Pound Reverse Proxy Robin Kimzey and Cliff McCullough
Pound: Features • Not a server • Separate layers of service • allows for isolated secure and un-secure backend servers • Backend server of any type • Virtual Host Service • Tracks backend servers that are down • Filtering Robin Kimzey and Cliff McCullough
Security • Pound requires minimal, initial access with the hard-disk • reads the configuration file • reads the certificate • reads error messages • writes log entries • Normal operating activities are all in memory Robin Kimzey and Cliff McCullough
Pound Configuration ListenHTTP Address 128.198.0.1 Port 80 Service Backend Address 172.20.80.81 Port 80 End Backend Address 172.20.80.82 Port 80 End End End Robin Kimzey and Cliff McCullough
Configure SSL ListenHTTPS Address 128.198.0.1 Port 443 Cert "/etc/pound/pound.pem" Service Backend Address 172.20.43.81 Port 443 End End End Robin Kimzey and Cliff McCullough
Filtering CheckURL "(^\/|\.html|\.jpg|\.png)$" Service Backend Address 172.20.80.81 Port 80 URL "(^\/|\.html|\.png)$" End Backend Address 172.20.80.82 Port 80 URL "(^\/|\.html|\.jpg)$" End End Robin Kimzey and Cliff McCullough
Virtual Host Service HeadRequire "Host: .*www.drincdr.org.*" Backend Address 172.20.72.72 Port 80 End End Robin Kimzey and Cliff McCullough
Session Aware Service . . . Session Type IP TTL 300 End Backend . . . End End Robin Kimzey and Cliff McCullough
Demonstration Robin Kimzey and Cliff McCullough
Future Work • Properly evaluate customer requirements • Compare Reverse Proxy Servers • Pound • Apache • Nginx • Backend network is plain text • Single point of failure Robin Kimzey and Cliff McCullough
Questions Robin Kimzey and Cliff McCullough