Load Balancing White Paper

Similar documents
VRRP (Virtual Router Redundancy Protocol) Function Added

PineApp Mail Secure SOLUTION OVERVIEW. David Feldman, CEO

M2M CDMA Router. VRRP Configuration Guide

Migrating from Cisco HSRP to industry standard VRRP

The information in this document is based on the Cisco VPN 3000 Series Concentrator.

Secondary Address Support

VRRPv3 Protocol Support

Virtual Router Redundancy Protocol (VRRP) Technical Support Guide

TriScale Clustering Tech Note

Configuring RIP. Information About RIP CHAPTER

CCNA 3 (v v6.0) Chapter 10 Exam Answers % Full

AppDirector Redundancy Mechanism

Static Routing NETWORK INFRASTRUCTURES NETKIT - LECTURE 4 MANUEL CAMPO, MARCO SPAZIANI

WLAN high availability

Operation Manual VRRP. Table of Contents

Configuring VRRP. Finding Feature Information. The Virtual Router Redundancy Protocol (VRRP) is an election protocol that dynamically assigns

Figure 7-1 Unicast Static FDB window

HUAWEI AR Series SEP Technical White Paper HUAWEI TECHNOLOGIES CO., LTD. Issue 1.0. Date

Focus: Technical overview of VRRP, configuration, and troubleshooting

Chapter 5. RIP Version 1 (RIPv1) CCNA2-1 Chapter 5

OSPF Protocol Overview on page 187. OSPF Standards on page 188. OSPF Area Terminology on page 188. OSPF Routing Algorithm on page 190

CIS 83 Midterm Spring 2004 Answer Sheet Name Score Grade Question Answer Question Answer

Table of Contents 1 OSPF Configuration 1-1

Stateful Failover Technology White Paper

EIGRP Stub Routing. Finding Feature Information. Information About EIGRP Stub Routing. EIGRP Stub Routing

S Series Switch. Cisco HSRP Replacement. Issue 01. Date HUAWEI TECHNOLOGIES CO., LTD.

Chapter 32 VSRP Commands

Configuring STP. Understanding Spanning-Tree Features CHAPTER

Configuring Bidirectional PIM

Configuring PTP. Information About PTP. This chapter contains the following sections:

Managing Switch Stacks

NAT Box-to-Box High-Availability Support

The Spanning Tree Protocol

HP Load Balancing Module

HP0-Y12. Building ProCurve Resilient, Adaptive Networks. Download Full Version :

Box to Box Redundancy on the CSS 11xxx Configuration Example

First Hop Redundancy Protocols Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches)

Chapter 5. RIP Version 1 (RIPv1)

Introduction to OSPF

Configuring OSPF TTL Security Check and OSPF Graceful Shutdown

OSPF. Unless otherwise noted, OSPF refers to OSPFv2 throughout this document.

Brocade Vyatta Network OS High Availability Configuration Guide, 5.2R1

Network-Level High Availability

IPv6 Routing: OSPFv3

Configuring STP and RSTP

Introduction to IP Routing. Geoff Huston

HP VPN Firewall Appliances

Configuring Spanning Tree Protocol

OSPFv3 Address Families

REDDIG II Computer Networking Training

Configuring Spanning Tree Protocol

EIGRP. About EIGRP. CLI Book 1: Cisco ASA Series General Operations CLI Configuration Guide, 9.7 1

Technical Note. FortiMail Best Practices Version 3.0 MR4.

Exam questions. 1. How many HSRP (Hot Standby Routing Protocol) groups will need to be configured for each VLAN?

Open Shortest Path First (OSPF)

OSPFv3 Address Families

OSPFv3 Address Families

Configuring Resilient Ethernet Protocol

Lab 4: Routing using OSPF

MSTP Configuration. Configuration

Campus Networking Workshop. Layer 2 engineering Spanning Tree and VLANs

Juniper JN0-647 Exam. Volume: 65 Questions. Question: 1 Which protocol is a multicast routing protocol? A. OSPF B. BGP C. PIM D. IS-IS.

G Telecom Profile

G Telecom Profile

Chapter 6 Reading Organizer

Implementing High Availability. in a Campus Environment. Implementing High Availability. Single Forwarding Path vs. Single Forwarding Path.

VRRP with VPN FAILOVER

EIGRP Features and Operation

Vodafone MachineLink. VRRP Configuration Guide

CCNA 3 (v v6.0) Chapter 5 Exam Answers % Full

Configuring a Rendezvous Point

KTHNOC, OSPF lab, rev: OSPF-lab. Juniper version. Group Nr. Name1. Name2. Name3. Name4. Date. Grade. Instructor s Signature

SPANNING TREE PROTOCOL GUIDE FOR ARAKNIS NETWORKS EQUIPMENT

Technical Field Enablement. Symantec Messaging Gateway 10.0 HIGH AVAILABILITY WHITEPAPER. George Maculley. Date published: 5 May 2013

Accurate study guides, High passing rate! IT TEST BOOK QUESTION & ANSWER. Ittestbook provides update free of charge in one year!

Configuring UDLD. Understanding UDLD CHAPTER

Device Interface IP Address Subnet Mask Default Gateway. Ports Assignment Network

V Commands. virtual ip, page 2 virtual ipv6, page 5 vrf, page 8. Cisco Nexus 7000 Series NX-OS Intelligent Traffic Director Command Reference 1

Exam Name: Troubleshooting and Maintaining Cisco IP Networks (TSHOOT)

Redundancy for Routers using Enhanced VRRP

BGP Event-Based VPN Import

Group Configuration Mode Commands

HPE FlexNetwork HSR6800 Routers

ALOHA LOAD BALANCER ACTIVE-PASSIVE BONDING

WiNG 5.x How-To Guide

ASA Cluster for the Firepower 9300 Chassis

MSTP Configuration. Page 1 of 24

Table of Contents 1 MSDP Configuration 1-1

Configuring Port Channels

Overview. Overview. OTV Fundamentals. OTV Terms. This chapter provides an overview for Overlay Transport Virtualization (OTV) on Cisco NX-OS devices.

GridDB Technical Design Document Version 1.0

April 21, 2017 Revision GridDB Reliability and Robustness

Multicast Technology White Paper

Layer 3 Routing (UI 2.0) User s Manual

Q&As. CCIP Configuring BGP on Cisco Routers (BGP) Pass Cisco Exam with 100% Guarantee

Routing with a distance vector protocol - EIGRP

Performance Monitor Administrative Options

Configuring Spanning Tree Protocol

Operation Manual IPv4 Routing H3C S3610&S5510 Series Ethernet Switches. Table of Contents

BGP Event-Based VPN Import

Transcription:

www.cybonet.com

Load Balancing White Paper

About PineApp Mail Secure's Load When building PineApp Mail Secure solutions, one of the ways to increase availability and performance is to provide redundancy of the SMTP sessions. Most Email security solutions cannot provide such redundancy themselves and are dependent on third party solutions in order to achieve load balancing (image 1). Image 1 Load balancing achieved by external device Unlike these solutions, PineApp Mail Secure features an embedded load balancer. This enables customers to achieve true load balancing capabilities without the need of the external device (image 2). Image 2 Load balancing achieved by internal engine

PineApp Mail Secure Load Balancing Master The PineApp Mail Secure solution that performs the routing function for the virtual IP at a given time. Only one master is active at a time. Slave PineApp Mail Secure solutions that are active but not in the Master state. Any number of slaves can exist. Slaves are ready to take on the role of Master if the current Master fails. Virtual IP An IP address that is not connected to a specific device or network interface card (NIC) on a device. SMTP packets are sent to the VIP address, but all packets travel through real network interfaces. Active Active A status where all participant devices share some of the SMTP traffic load. It is possible to define weight for each device and control the amount of traffic that is distributed to each device. Active - Passive A status where only the Master device handles the traffic while the Slave waits in stand-by to automatically take over the Master role in case of failure. Load Balancing in action In the following example, the load balancing is demonstrated. Figure 3 illustrates a typical load balance configuration (active active): Image 3 Typical load balancing configuration

When a PineApp Mail Secure is configured as a Master, it sends multicast packets advising the rest of the participants in the load balancing that it is the Master for that cluster. This serves two purposes: 01 If a device with a higher priority is started (for example the VIP owner), the new owner can force an election and take on the Master role. The slaves expect this multicast. If an interval elapses without a packet being received, the solutions in the Slave state take action to elect a new Master (since in all likelihood the Master has failed). In our example, we have configured PineApp Mail Secure Master priority to be 200 and PineApp Mail Secure's Slave priority to be 50. The Master will manage the Virtual IP and the multicasts. PineApp Mail Secure failure When the Master suffers a failure, after a short interval the Slave notices that no multicast packet has been received. It then transitions to the Master state, taking over the handling of the VIP and sends its own multicast packets. The length of time that the Slave waits before making its state transition is called the Master down interval. It is based on the length of time between Master updates (called the advertisement interval ) and a value called skew time which is calculated from the priority value. Router restart When the problem with the Master is resolved, and depending on its configuration, either of two situations occurs: 01 If the Master is configured to start as Master, it forces an election immediately by sending its first advertisement as Master. The Slave receives this advertisement and transitions to backup state. If the Master is configured to start as backup it transitions from initialization to Backup state. Nothing happens until it receives an advertisement from the Slave. The Slave has a lower priority than the Master, so the Master starts an election by commencing its transition to Master state and sending an advertisement. When it receives this advertisement, The Slave transitions to backup state because the Master has higher priority. Topologies Active-Passive A status where only the Master device handles the traffic while the Slave waits in stand-by to automatically take over the Master's role in case of failure. All logs and quarantine are stored on the active Master device at the given time. Advantages: 01 Redundancy if one PineApp Mail Secure faults, the passive system automatically takes over with no down time. Management is done on the Active unit. If it faults, the management automatically transfers to the passive unit (which turns to active), Including daily reports and Black & White lists. The disadvantage of this topology is that if a system faults, all the quarantine, logs and databases are not available. Also, it is not possible to add scanning abilities by adding additional devices.

Active-Active A status in which all participant devices share some of the SMTP traffic load. It is possible to define weight for each device and control the amount of traffic that is distributed to each device. It is possible to configure more than two devices in such topology. Advantages: 01 Traffic is balanced between two devices, thus the capability to handle more traffic is doubled. Ability to add more devices as the need of the organization grows The disadvantage of this topology is that quarantine database and logs are distributed between all devices. However, this can be solved by the Scanner-Director topology (see Scanner-Director white paper). Distributing configurations CYBONET's solution also offers to manage these clusters from the Master unit. Once changes, such as Black & White lists, rules or general configuration, are made on the Master the changes are distributed to the Slaves. The distribution is done manually.

www.cybonet.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback