1 / 18

Introduction to OpenStack Load Balancing

Learn about network load balancing in OpenStack, including use cases, model, providers, API, CLI, session persistence, TLS termination, layer 7 balancing, and more with hands-on demos and resources.

mbock
Download Presentation

Introduction to OpenStack Load Balancing

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Introduction to OpenStack Load Balancing http://bit.do/IntroductionLBaaSPike Adam Harwell irc: rm_work Michael Johnson irc: johnsom German Eichberger irc: xgerman

  2. Agenda • What is network load balancing? • What are some use cases for using load balancing? • The OpenStack load balancing model • Load balancing providers (drivers) • The load balancing Application Programming Interface (API) • The load balancing Command Line Interface (CLI) • The horizon dashboard for load balancing • Session persistence • TLS termination • Layer 7 load balancing

  3. What is network load balancing? http://www.openstack.org Network Load Balancer http://www.openstack.org

  4. What are some use cases for using load balancing? • Distributing the network load between many servers • Increasing the availability of the served resource • SSL offload and centralized certificate management • Protocol conversion • IPv6 VIP but IPv4 member servers • Protocol port conversion • VIP may listen on port 80 when member servers listen on 8080 • L7 policies and rules • Static image files may be served from different member servers than the web page itself • Abstracting the physical network topology • Ease the upgrade and rollback of applications or equipment • Many more…

  5. The OpenStack Load Balancing Model Load Balancer VIP: 192.0.2.1 Member 198.51.100.5:8888 Listener Port: 80 Member 203.0.113.20:8080 Listener Port: 443 Health Monitor Pool

  6. Load Balancing Providers (drivers) • When you create a load balancer you can specify a “provider” that will implement the load balancing engine. • The following providers are available: Octavia reference driver A10 Networks Brocade Citrix Netscaler Legacy HAProxy namespace driver F5 Networks Kemp Technologies Radware Vmware NSX Note: Not all drivers are currently present via the native Octavia v2 API.

  7. The load balancing Application Programming Interface (API) • Load balancing is available via a REST API advertised as the “load-balancer” service endpoint in keystone. • To create a load balancer, you would POST a JSON body to the “load-balancer” endpoint with the appropriate keystone token. { "loadbalancer": { "description": "My favorite load balancer", "vip_subnet_id": "d4af86e1-0051-488c-b7a0-527f97490c9a", "vip_address": "203.0.113.50", "provider": "octavia", "name": "best_load_balancer" } } The API does support single-call-create, meaning one API call can create a fully functional load balancer. See the API reference: https://developer.openstack.org/api-ref/load-balancer/v2

  8. The load balancing Command Line Interface (CLI) • Octavia has a native OpenStack Client plugin for the Octavia v2 API. • This can be installed by “pip install python-octaviaclient” openstackloadbalancer create –name best_load_balancer –provider octavia –vip-subnet tenant-1-subnet

  9. The Horizon Dashboard for Load Balancing • Web UI for creating and managing load balancers • Includes a wizard workflow for load balancer creation Demo Time!

  10. Session Persistence - None Network Load Balancer http://www.openstack.org http://www.openstack.org/news

  11. Session Persistence – HTTP Cookie Network Load Balancer http://www.openstack.org http://www.openstack.org/news

  12. TLS Termination • The load balancer handles decrypting the request and encrypting the response • This reduces the load on the backend servers and simplifies certificate management • Certificates only need to be installed and updated in the load balancer as opposed to in each backend member server • Certificates and keys are stored in a secure location and accessed via the Barbican project. • Allows for advanced load balancing of TLS protected requests

  13. TLS Termination Network Load Balancer https://www.openstack.org

  14. Layer 7 Load Balancing Policy Actions Rule Types Rule Comparison Types • Reject • Redirect to URL • Redirect to Pool • Request hostname • Path • File Type • Header field • Cookie • Regular expression • Starts with • Ends with • Contains • Equal to Example: Requested files ending in JPG can be serviced by a load balancer pool with static content caching member servers, but the HTML and CSS can be served by a pool with traditional web server members.

  15. Layer 7 Load Balancing Load Balancer VIP: 192.0.2.1 Health Monitor L7 Policy Pool Member 198.51.100.5:8888 Listener Port: 80 Member 203.0.113.20:8080 Listener Port: 443 L7 Rule Member 203.0.13.50:80 Health Monitor Pool

  16. Get Involved! • Weekly meetings: Wednesday @ 20:00 UTC in #openstack-meeting-alt • FreenodeIRC: #openstack-lbaas • https://wiki.openstack.org/wiki/octavia • http://www.octavia.cloud • https://launchpad.net/octavia • https://github.com/openstack/octavia We are irc: johnsom, irc: rm_work, irc: xgerman

  17. Thank You! Questions?

More Related