mxu1386
Visitor.
349 views

load balance with IDP cluster behind AG cluster


We use NAM4.1, current set up: one IDP, one AG and one admin console.
IDP is behind AG so that we have only one public facing IP.
Now we would like to add more AGs and IDPs into their clusters. I
understand that the AGs will have load balance through L4 switch. What I
don’t know is how the servers in IDP cluster get load balancing, since
the IDPs are behind AG cluster, traffic going to IDPs go through AG
cluster first, how does the L4 know which IDP to route to, do I need
another L4 in front of IDPs (and behind AG)?


--
mxu1386
------------------------------------------------------------------------
mxu1386's Profile: https://forums.netiq.com/member.php?userid=1361
View this thread: https://forums.netiq.com/showthread.php?t=55818

0 Likes
3 Replies
Anonymous_User Absent Member.
Absent Member.

Re: load balance with IDP cluster behind AG cluster

mxu1386 wrote:

>
> We use NAM4.1, current set up: one IDP, one AG and one admin console.
> IDP is behind AG so that we have only one public facing IP.
> Now we would like to add more AGs and IDPs into their clusters. I
> understand that the AGs will have load balance through L4 switch.
> What I don�t know is how the servers in IDP cluster get load
> balancing, since the IDPs are behind AG cluster, traffic going to
> IDPs go through AG cluster first, how does the L4 know which IDP to
> route to, do I need another L4 in front of IDPs (and behind AG)?


The load balancer won't know what IDP to send the traffic to but the AG
does. You can configure session persistence/stickyness. When you enable
that feature the AG sets a cookie. When the cookie is received it knows
what webserver (in your case what IDP) to route the traffic to.

--
Cheers,
Edward
0 Likes
mxu1386
Visitor.

Re: load balance with IDP cluster behind AG cluster


Edward van der Maas;267504 Wrote:
> mxu1386 wrote:
>
> >
> > We use NAM4.1, current set up: one IDP, one AG and one admin console.
> > IDP is behind AG so that we have only one public facing IP.
> > Now we would like to add more AGs and IDPs into their clusters. I
> > understand that the AGs will have load balance through L4 switch.
> > What I don�t know is how the servers in IDP cluster get load
> > balancing, since the IDPs are behind AG cluster, traffic going to
> > IDPs go through AG cluster first, how does the L4 know which IDP to
> > route to, do I need another L4 in front of IDPs (and behind AG)?

>
> The load balancer won't know what IDP to send the traffic to but the AG
> does. You can configure session persistence/stickyness. When you enable
> that feature the AG sets a cookie. When the cookie is received it knows
> what webserver (in your case what IDP) to route the traffic to.
>
> --
> Cheers,
> Edward


Thanks Ed,
Will try that.
Mark


--
mxu1386
------------------------------------------------------------------------
mxu1386's Profile: https://forums.netiq.com/member.php?userid=1361
View this thread: https://forums.netiq.com/showthread.php?t=55818

0 Likes
EricVeysey1 Absent Member.
Absent Member.

Re: load balance with IDP cluster behind AG cluster


mxu1386;267486 Wrote:
> We use NAM4.1, current set up: one IDP, one AG and one admin console.
> IDP is behind AG so that we have only one public facing IP.
> Now we would like to add more AGs and IDPs into their clusters. I
> understand that the AGs will have load balance through L4 switch. What I
> don’t know is how the servers in IDP cluster get load balancing, since
> the IDPs are behind AG cluster, traffic going to IDPs go through AG
> cluster first, how does the L4 know which IDP to route to, do I need
> another L4 in front of IDPs (and behind AG)?


There is a couple ways of doing this. You can let the AG's choose the IP
through round robin, or you can introduce at L4 on the IDP as well.

The L4 can be configured for persistence through SSL sessions.

When you run through multiple VIP's and SSL, it becomes challenging to
achieve even distribution of traffic.


--
EricVeysey
------------------------------------------------------------------------
EricVeysey's Profile: https://forums.netiq.com/member.php?userid=493
View this thread: https://forums.netiq.com/showthread.php?t=55818


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.