ååã¯ãéçã«ãŒãã£ã³ã°ãšåçã«ãŒãã£ã³ã°ã®èŠ³ç¹ãã NSX Edge ã®æ©èœã«ã€ããŠèª¬æããŸããããä»æ¥ã¯ããŒã ãã©ã³ãµãŒã«ã€ããŠèª¬æããŸãã
èšå®ãå§ããåã«ãäž»ãªãã©ã³ã¹èª¿æŽã®çš®é¡ã«ã€ããŠç°¡åã«æãåºããŠããã ããããšæããŸãã
ТеПÑОÑ
ä»æ¥ã®ãã¹ãŠã®ãã€ããŒã ãã©ã³ã·ã³ã° ãœãªã¥ãŒã·ã§ã³ã¯ãã»ãšãã©ã®å Žåãã¢ãã«ã® XNUMX çªç® (ãã©ã³ã¹ããŒã) ã¬ãã«ãš XNUMX çªç® (ã¢ããªã±ãŒã·ã§ã³) ã¬ãã«ã§ã®ãã©ã³ã·ã³ã°ã® XNUMX ã€ã®ã«ããŽãªã«åé¡ãããŸãã
- ãã©ã³ãµãŒL4 ã»ãšãã©ã®å Žåãããã¯ã¯ã©ã€ã¢ã³ããšå©çšå¯èœãªäžé£ã®ããã¯ãšã³ãã®éã«ç«ã€äžéãããã·ã§ãããTCP æ¥ç¶ãçµäºã (ã€ãŸããç¬ç«ã㊠SYN ã«å¿çã)ãããã¯ãšã³ããéžæããŠããã®æ¹åã«æ°ãã TCP ã»ãã·ã§ã³ãéå§ããç¬ç«ã㊠SYN ãéä¿¡ããŸãã ãã®ã¿ã€ãã¯åºæ¬çãªã¿ã€ãã® XNUMX ã€ã§ãããä»ã®ãªãã·ã§ã³ãå¯èœã§ãã
- ãã©ã³ãµãŒL7 L4 ãã©ã³ãµãŒããããé«åºŠã«ãå©çšå¯èœãªããã¯ãšã³ãå šäœã«ãã©ãã£ãã¯ãåæ£ããŸãã ããšãã°ãHTTP ã¡ãã»ãŒãžã®å 容 (URLãCookie ãªã©) ã«åºã¥ããŠãã©ã®ããã¯ãšã³ããéžæãããã決å®ã§ããŸãã
ã¿ã€ãã«é¢ä¿ãªãããã©ã³ãµãŒã¯æ¬¡ã®æ©èœããµããŒãã§ããŸãã
- ãµãŒãã¹æ€åºã¯ãå©çšå¯èœãªããã¯ãšã³ãã®ã»ãã (éçãDNSãConsulãetcd ãªã©) ã決å®ããããã»ã¹ã§ãã
- æ€åºãããããã¯ãšã³ãã®æ©èœã確èªããŸã (HTTP ãªã¯ãšã¹ãã䜿çšããããã¯ãšã³ãã®ã¢ã¯ãã£ããªãpingããTCP æ¥ç¶ã®åé¡ã®ããã·ããªæ€åºãå¿çå ã®ããã€ãã® 503 HTTP ã³ãŒãã®ååšãªã©)ã
- ãã©ã³ã·ã³ã°èªäœ (ã©ãŠã³ãããã³ãã©ã³ãã éžæããœãŒã¹ IP ããã·ã¥ãURI)ã
- TLS ã®çµäºãšèšŒææžã®æ€èšŒã
- ã»ãã¥ãªãã£é¢é£ã®ãªãã·ã§ã³ (èªèšŒãDoS æ»æé²æ¢ãé床å¶é) ãªã©ã
NSX Edge ã¯ã次㮠XNUMX ã€ã®ããŒã ãã©ã³ãµ ãããã€ã¡ã³ã ã¢ãŒãããµããŒãããŸãã
ãããã·ã¢ãŒããŸãã¯ã¯ã³ã¢ãŒã ã ãã®ã¢ãŒãã§ã¯ãNSX Edge ã¯ããã¯ãšã³ãã® XNUMX ã€ã«ãªã¯ãšã¹ããéä¿¡ãããšãã«ããã® IP ã¢ãã¬ã¹ãéä¿¡å ã¢ãã¬ã¹ãšããŠäœ¿çšããŸãã ãããã£ãŠããã©ã³ãµã¯éä¿¡å NAT ãšå®å NAT ã®æ©èœãåæã«å®è¡ããŸãã ããã¯ãšã³ãã¯ããã¹ãŠã®ãã©ãã£ãã¯ããã©ã³ãµãŒããéä¿¡ããããã®ãšããŠèªèããããã«çŽæ¥å¿çããŸãã ãã®ãããªã¹ããŒã ã§ã¯ããã©ã³ãµãŒã¯å éšãµãŒããŒãšåããããã¯ãŒã¯ ã»ã°ã¡ã³ãã«ååšããå¿ èŠããããŸãã
æ¹æ³ã¯æ¬¡ã®ãšããã§ãã
1. ãŠãŒã¶ãŒã¯ãEdge äžã§æ§æãããŠãã VIP ã¢ãã¬ã¹ (ãã©ã³ãµãŒ ã¢ãã¬ã¹) ã«ãªã¯ãšã¹ããéä¿¡ããŸãã
2. Edge ã¯ããã¯ãšã³ãã® XNUMX ã€ãéžæããå®å
NAT ãå®è¡ããŠãVIP ã¢ãã¬ã¹ãéžæããããã¯ãšã³ãã®ã¢ãã¬ã¹ã«çœ®ãæããŸãã
3. Edge ã¯ãœãŒã¹ NAT ãå®è¡ãããªã¯ãšã¹ããéä¿¡ãããŠãŒã¶ãŒã®ã¢ãã¬ã¹ãç¬èªã®ã¢ãã¬ã¹ã«çœ®ãæããŸãã
4. ããã±ãŒãžã¯éžæããããã¯ãšã³ãã«éä¿¡ãããŸãã
5. ãŠãŒã¶ãŒã®å
ã®ã¢ãã¬ã¹ããã©ã³ãµãŒã®ã¢ãã¬ã¹ã«å€æŽãããŠãããããããã¯ãšã³ãã¯ãŠãŒã¶ãŒã«çŽæ¥å¿çããããšããžã«å¿çããŸãã
6. Edge ã¯ãµãŒããŒã®å¿çããŠãŒã¶ãŒã«éä¿¡ããŸãã
å³ã¯ä»¥äžã®ãšããã§ãã
ééã¢ãŒããã€ãŸãã€ã³ã©ã€ã³ ã¢ãŒãã ãã®ã·ããªãªã§ã¯ããã©ã³ãµãŒã«ã¯å
éšãããã¯ãŒã¯ãšå€éšãããã¯ãŒã¯äžã«ã€ã³ã¿ãŒãã§ã€ã¹ããããŸãã åæã«ãå€éšãããã¯ãŒã¯ããå
éšãããã¯ãŒã¯ã«çŽæ¥ã¢ã¯ã»ã¹ããããšã¯ã§ããŸããã å
èµããŒã ãã©ã³ãµãŒã¯ãå
éšãããã¯ãŒã¯äžã®ä»®æ³ãã·ã³ã® NAT ã²ãŒããŠã§ã€ãšããŠæ©èœããŸãã
ãã®ä»çµã¿ã¯æ¬¡ã®ãšããã§ãã
1. ãŠãŒã¶ãŒã¯ãEdge äžã§æ§æãããŠãã VIP ã¢ãã¬ã¹ (ãã©ã³ãµãŒ ã¢ãã¬ã¹) ã«ãªã¯ãšã¹ããéä¿¡ããŸãã
2. Edge ã¯ããã¯ãšã³ãã® XNUMX ã€ãéžæããå®å
NAT ãå®è¡ããŠãVIP ã¢ãã¬ã¹ãéžæããããã¯ãšã³ãã®ã¢ãã¬ã¹ã«çœ®ãæããŸãã
3. ããã±ãŒãžã¯éžæããããã¯ãšã³ãã«éä¿¡ãããŸãã
4. ããã¯ãšã³ãã¯ããŠãŒã¶ãŒã®å
ã®ã¢ãã¬ã¹ (ãœãŒã¹ NAT ã¯å®è¡ãããŸãã) ãå«ããªã¯ãšã¹ããåä¿¡ããããã«çŽæ¥å¿çããŸãã
5. ã€ã³ã©ã€ã³ ã¹ããŒã ã§ã¯éåžžãããŒã ãã©ã³ãµãŒããµãŒã㌠ãã¡ãŒã ã®ããã©ã«ã ã²ãŒããŠã§ã€ãšããŠæ©èœããããããã©ãã£ãã¯ã¯åã³ããŒã ãã©ã³ãµãŒã«ãã£ãŠåãå
¥ããããŸãã
6. Edge ã¯ãVIP ãéä¿¡å
IP ã¢ãã¬ã¹ãšããŠäœ¿çšããŠãéä¿¡å
NAT ãå®è¡ããŠãŠãŒã¶ãŒã«ãã©ãã£ãã¯ãéä¿¡ããŸãã
å³ã¯ä»¥äžã®ãšããã§ãã
ç·Žç¿
ç§ã®ãã¹ããã³ãã«ã¯ Apache ãå®è¡ãã 3 å°ã®ãµãŒããŒããããHTTPS çµç±ã§åäœããããã«æ§æãããŠããŸãã Edge ã¯ãHTTPS ãªã¯ãšã¹ãã®ã©ãŠã³ã ããã³ ãã©ã³ã·ã³ã°ãå®è¡ããæ°ãããªã¯ãšã¹ããããããæ°ãããµãŒããŒã«ãããã·ããŸãã
å§ããŸããã
NSX Edge ã§äœ¿çšããã SSL 蚌ææžã®çæ
æå¹ãª CA 蚌ææžãã€ã³ããŒãããããšããèªå·±çœ²å蚌ææžã䜿çšããããšãã§ããŸãã ãã®ãã¹ãã§ã¯èªå·±çœ²åã䜿çšããŸãã
- vCloud Director ã€ã³ã¿ãŒãã§ã€ã¹ã§ãEdge ãµãŒãã¹èšå®ã«ç§»åããŸãã
- ã蚌ææžãã¿ãã«ç§»åããŸãã ã¢ã¯ã·ã§ã³ã®ãªã¹ããããæ°ãã CSR ã®è¿œå ãéžæããŸãã
- å¿
é ãã£ãŒã«ãã«å
¥åãããä¿æããã¯ãªãã¯ããŸãã
- æ°ããäœæãã CSR ãéžæããèªå·±çœ²å CSR ãªãã·ã§ã³ãéžæããŸãã
- 蚌ææžã®æå¹æéãéžæãããä¿æããã¯ãªãã¯ããŸãã
- èªå·±çœ²å蚌ææžã䜿çšå¯èœãªèšŒææžã®ãªã¹ãã«è¡šç€ºãããŸãã
ã¢ããªã±ãŒã·ã§ã³ãããã¡ã€ã«ã®èšå®
ã¢ããªã±ãŒã·ã§ã³ ãããã¡ã€ã«ã䜿çšãããšããããã¯ãŒã¯ ãã©ãã£ãã¯ãããå®å
šã«å¶åŸ¡ã§ããããã«ãªãã管çãã·ã³ãã«ãã€å¹æçã«ãªããŸãã ãããã¯ãç¹å®ã®çš®é¡ã®ãã©ãã£ãã¯ã®åäœãå®çŸ©ããããã«äœ¿çšã§ããŸãã
- [ããŒã ãã©ã³ãµãŒ] ã¿ãã«ç§»åãããã©ã³ãµãŒãæå¹ã«ããŸãã ããã§ã®ã¢ã¯ã»ã©ã¬ãŒã·ã§ã³æå¹ãªãã·ã§ã³ã«ããããã©ã³ãµãŒã¯ L4 ã®ä»£ããã«ããé«é㪠L7 ãã©ã³ã·ã³ã°ã䜿çšã§ããããã«ãªããŸãã
- [ã¢ããªã±ãŒã·ã§ã³ ãããã¡ã€ã«] ã¿ãã«ç§»åããŠãã¢ããªã±ãŒã·ã§ã³ ãããã¡ã€ã«ãèšå®ããŸãã ã+ããã¯ãªãã¯ããŸãã
- ãããã¡ã€ã«ã®ååãèšå®ãããããã¡ã€ã«ãé©çšããããã©ãã£ãã¯ã®ã¿ã€ããéžæããŸãã ããã€ãã®ãã©ã¡ãŒã¿ã«ã€ããŠèª¬æããŸãã
åºå· â ã»ãã·ã§ã³ ããŒã¿ãä¿åããã³è¿œè·¡ããŸããããšãã°ãããŒã«å ã®ã©ã®ç¹å®ã®ãµãŒããŒããŠãŒã¶ãŒ ãªã¯ãšã¹ããåŠçããŠããããªã©ã§ãã ããã«ãããã»ãã·ã§ã³ãŸãã¯åŸç¶ã®ã»ãã·ã§ã³ã®åç¶æéäžããŠãŒã¶ãŒèŠæ±ãåãããŒã« ã¡ã³ããŒã«ã«ãŒãã£ã³ã°ãããããšãä¿èšŒãããŸãã
SSLãã¹ã¹ã«ãŒãæå¹ã«ãã â ãã®ãªãã·ã§ã³ãéžæãããšãNSX Edge 㯠SSL ã®çµäºãåæ¢ããŸãã 代ããã«ãçµäºã¯ãã©ã³ã¹ããšãããŠãããµãŒããŒäžã§çŽæ¥è¡ãããŸãã
X-Forwarded-For HTTP ããããŒãæ¿å ¥ãã â ããŒã ãã©ã³ãµãŒãä»ã㊠Web ãµãŒããŒã«æ¥ç¶ããã¯ã©ã€ã¢ã³ãã®éä¿¡å IP ã¢ãã¬ã¹ã決å®ã§ããŸãã
ããŒã«ãµã€ãSSLãæå¹ã«ãã â éžæããããŒã«ã HTTPS ãµãŒããŒã§æ§æãããŠããããšãæå®ã§ããŸãã
- HTTPS ãã©ãã£ãã¯ã®ãã©ã³ã¹ããšããããããŒã«ãµã€ã SSL ãæå¹ã«ãã[ä»®æ³ãµãŒããŒèšŒææž] -> [ãµãŒãã¹èšŒææž] ã¿ãã§ä»¥åã«çæãã蚌ææžãéžæããå¿
èŠããããŸãã
- ããŒã«èšŒææž -> ãµãŒãã¹èšŒææžã«ã€ããŠãåæ§ã§ãã
ãµãŒããŒã®ããŒã«ãäœæãããã®ããŒã«ãžã®ãã©ãã£ãã¯ããã©ã³ã¹ãããããã«ããŸãã
- ãããŒã«ãã¿ãã«ç§»åããŸãã ã+ããã¯ãªãã¯ããŸãã
- ããŒã«ã®ååãèšå®ããã¢ã«ãŽãªãºã (ã©ãŠã³ã ããã³ã䜿çšããŸã) ãšãã«ã¹ ãã§ã㯠ããã¯ãšã³ãã®ç£èŠã®çš®é¡ãéžæããŸããééãªãã·ã§ã³ã¯ãã¯ã©ã€ã¢ã³ãã®åæãœãŒã¹ IP ãå
éšãµãŒããŒã«è¡šç€ºããããã©ããã瀺ããŸãã
- ãã®ãªãã·ã§ã³ãç¡å¹ã«ãªã£ãŠããå Žåãå éšãµãŒããŒã®ãã©ãã£ãã¯ã¯ãã©ã³ãµãŒã®ãœãŒã¹ IP ããéä¿¡ãããŸãã
- ãã®ãªãã·ã§ã³ãæå¹ãªå Žåãå éšãµãŒããŒã¯ã¯ã©ã€ã¢ã³ãã®ãœãŒã¹ IP ãåç §ããŸãã ãã®æ§æã§ã¯ãè¿ããããã±ããã NSX Edge ãééããããã«ãNSX Edge ãããã©ã«ã ã²ãŒããŠã§ã€ãšããŠæ©èœããå¿ èŠããããŸãã
NSX ã¯ã次ã®åæ£ã¢ã«ãŽãªãºã ããµããŒãããŠããŸãã
- IP_ããã·ã¥ â åãã±ããã®éä¿¡å IP ãšå®å IP ã®ããã·ã¥é¢æ°ã®çµæã«åºã¥ããµãŒããŒã®éžæã
- ãªãŒã¹ãã³ã³ â ç¹å®ã®ãµãŒããŒã§ãã§ã«å©çšå¯èœãªæ°ã«å¿ããŠãåä¿¡æ¥ç¶ã®ãã©ã³ã¹ããšããŸãã æ°ããæ¥ç¶ã¯ãæ¥ç¶æ°ãæãå°ãªããµãŒããŒã«éä¿¡ãããŸãã
- ã©ãŠã³ãããã³ â æ°ããæ¥ç¶ã¯ãå²ãåœãŠãããéã¿ã«åŸã£ãŠãåãµãŒããŒã«é çªã«éä¿¡ãããŸãã
- URI â URI ã®å·ŠåŽã®éšå (çå笊ã®å) ã¯ããã·ã¥ãããããŒã«å ã®ãµãŒããŒã®åèšã®éã¿ã§é€ç®ãããŸãã çµæã¯ãã©ã®ãµãŒããŒããªã¯ãšã¹ããåä¿¡ãããã瀺ãããã¹ãŠã®ãµãŒããŒãå©çšå¯èœãªéãããªã¯ãšã¹ãã¯åžžã«åããµãŒããŒã«ã«ãŒãã£ã³ã°ãããŸãã
- HTTPããã㌠â ãã©ã¡ãŒã¿ãšããŠæå®ã§ããç¹å®ã® HTTP ããããŒã«åºã¥ããŠãã©ã³ã¹ããšããŸãã ããããŒãæ¬ èœããŠãããå€ããªãå Žåã¯ãROUND_ROBIN ã¢ã«ãŽãªãºã ãé©çšãããŸãã
- URL â å HTTP GET ãªã¯ãšã¹ãã¯ãåŒæ°ãšããŠæå®ããã URL ãã©ã¡ãŒã¿ãæ€çŽ¢ããŸãã ãã©ã¡ãŒã¿ãŒã®åŸã«çå·ãšå€ãç¶ãå Žåãå€ã¯ããã·ã¥ãããå®è¡äžã®ãµãŒããŒã®åèšã®éã¿ã§é€ç®ãããŸãã çµæã¯ãã©ã®ãµãŒããŒããªã¯ãšã¹ããåä¿¡ãããã瀺ããŸãã ãã®ããã»ã¹ã¯ããªã¯ãšã¹ãå ã®ãŠãŒã¶ãŒ ID ã远跡ãããã¹ãŠã®ãµãŒããŒãå©çšå¯èœãªéããåããŠãŒã¶ãŒ ID ãåžžã«åããµãŒããŒã«éä¿¡ãããããã«ããããã«äœ¿çšãããŸãã
- [ã¡ã³ããŒ] ãããã¯ã§ [+] ãã¯ãªãã¯ããŠãµãŒããŒãããŒã«ã«è¿œå ããŸãã
ããã§æ¬¡ãæå®ããå¿ èŠããããŸãã- ãµãŒããŒã®åå;
- ãµãŒãã®IPã¢ãã¬ã¹;
- ãµãŒããŒããã©ãã£ãã¯ãåä¿¡ããããŒãã
- ãã«ã¹ãã§ãã¯çšã®ããŒã (Monitor healthcheck);
- éã¿ â ãã®ãã©ã¡ãŒã¿ã䜿çšãããšãç¹å®ã®ããŒã« ã¡ã³ããŒãåä¿¡ãããã©ãã£ãã¯ã®æ¯äŸéã調æŽã§ããŸãã
- æ倧æ¥ç¶æ° â ãµãŒããŒãžã®æ倧æ¥ç¶æ°ã
- æå°æ¥ç¶æ° â ãã©ãã£ãã¯ã次ã®ããŒã« ã¡ã³ããŒã«è»¢éãããåã«ãµãŒããŒãåŠçããå¿ èŠãããæ¥ç¶ã®æå°æ°ã
ããã¯ãXNUMX ã€ã®ãµãŒããŒã®æçµçãªããŒã«ãã©ã®ããã«èŠãããã§ãã
ä»®æ³ãµãŒããŒã®è¿œå
- [ä»®æ³ãµãŒããŒ] ã¿ãã«ç§»åããŸãã ã+ããã¯ãªãã¯ããŸãã
- ãä»®æ³ãµãŒããŒãæå¹ã«ãããã䜿çšããŠä»®æ³ãµãŒããŒãã¢ã¯ãã£ãåããŸãã
ååãä»ãã以åã«äœæããã¢ããªã±ãŒã·ã§ã³ ãããã¡ã€ã«ãããŒã«ãéžæããä»®æ³ãµãŒããŒãå€éšãããªã¯ãšã¹ããåä¿¡ãã IP ã¢ãã¬ã¹ãæå®ããŸãã HTTPS ãããã³ã«ãšããŒã 443 ãæå®ããŸãã
ãªãã·ã§ã³ã®ãã©ã¡ãŒã¿ã¯æ¬¡ã®ãšããã§ãã
æ¥ç¶å¶é â ä»®æ³ãµãŒããŒãåŠçã§ããåææ¥ç¶ã®æ倧æ°ã
æ¥ç¶é床å¶é (CPS) â XNUMX ç§ãããã®æ°ããåä¿¡ãªã¯ãšã¹ãã®æ倧æ°ã
ããã§ãã©ã³ãµãŒã®èšå®ãå®äºãããã®æ©èœã確èªã§ããããã«ãªããŸãã ãµãŒããŒã®æ§æã¯ã·ã³ãã«ãªã®ã§ãããŒã«å
ã®ã©ã®ãµãŒããŒããªã¯ãšã¹ããåŠçããããææ¡ã§ããŸãã ã»ããã¢ããäžã«ã©ãŠã³ã ããã³ ãã©ã³ã·ã³ã° ã¢ã«ãŽãªãºã ãéžæããåãµãŒããŒã® Weight ãã©ã¡ãŒã¿ãŒã¯ XNUMX ã«çãããããåŸç¶ã®åãªã¯ãšã¹ãã¯ããŒã«ã®æ¬¡ã®ãµãŒããŒã«ãã£ãŠåŠçãããŸãã
ãã©ãŠã¶ã«ãã©ã³ãµãŒã®å€éšã¢ãã¬ã¹ãå
¥åãããšã次ã®ããã«è¡šç€ºãããŸãã
ããŒãžãæŽæ°ããåŸããªã¯ãšã¹ãã¯æ¬¡ã®ãµãŒããŒã«ãã£ãŠåŠçãããŸãã
ããäžåºŠãããŒã«ãã XNUMX çªç®ã®ãµãŒããŒã確èªããŸãã
確èªãããšãEdge ããéä¿¡ããã蚌ææžãæåã«çæãããã®ãšåãã§ããããšãããããŸãã
Edge Gateway ã³ã³ãœãŒã«ãããã©ã³ãµãŒã®ã¹ããŒã¿ã¹ã確èªããŸãã ãããè¡ãã«ã¯ã次ã®ããã«å
¥åããŸã ãµãŒãã¹ããŒããã©ã³ãµããŒã«ã衚瀺.
ããŒã«å
ã®ãµãŒããŒã®ã¹ããŒã¿ã¹ã確èªããããã® Service Monitor ã®æ§æ
Service Monitor ã䜿çšãããšãããã¯ãšã³ã ããŒã«å
ã®ãµãŒããŒã®ã¹ããŒã¿ã¹ãç£èŠã§ããŸãã ãªã¯ãšã¹ãã«å¯Ÿããå¿çãæåŸ
ã©ããã§ãªãå Žåã¯ããµãŒããŒãããŒã«ããåé€ããŠãæ°ãããªã¯ãšã¹ããåä¿¡ããªãããã«ããããšãã§ããŸãã
ããã©ã«ãã§ã¯ã次㮠XNUMX ã€ã®æ€èšŒæ¹æ³ãæ§æãããŠããŸãã
- TCPã¢ãã¿ãŒã
- HTTPã¢ãã¿ãŒã
- HTTPS ã¢ãã¿ãŒã
æ°ãããã®ãäœæããŸãããã
- ããµãŒãã¹ç£èŠãã¿ãã«ç§»åããã+ããã¯ãªãã¯ããŸãã
- éžã¶ïŒ
- æ°ããã¡ãœããã®ååã
- ãªã¯ãšã¹ããéä¿¡ãããééã
- å¿çåŸ ã¡ã®ã¿ã€ã ã¢ãŠãã
- ç£èŠã¿ã€ã â GET ã¡ãœããã䜿çšãã HTTPS ãªã¯ãšã¹ããäºæãããã¹ããŒã¿ã¹ ã³ãŒã â 200(OK) ããã³ãªã¯ãšã¹ã URLã
- ããã§æ°ãã Service Monitor ã®ã»ããã¢ãããå®äºããããŒã«ã®äœææã«ããã䜿çšã§ããããã«ãªããŸããã
ã¢ããªã±ãŒã·ã§ã³ã«ãŒã«ã®èšå®
ã¢ããªã±ãŒã·ã§ã³ ã«ãŒã«ã¯ãç¹å®ã®ããªã¬ãŒã«åºã¥ããŠãã©ãã£ãã¯ãæäœããæ¹æ³ã§ãã ãã®ããŒã«ã䜿çšãããšãEdge Gateway ã§å©çšå¯èœãªã¢ããªã±ãŒã·ã§ã³ ãããã¡ã€ã«ããã®ä»ã®ãµãŒãã¹ã§ã¯äžå¯èœãªé«åºŠãªè² è·åæ£ã«ãŒã«ãäœæã§ããŸãã
- ã«ãŒã«ãäœæããã«ã¯ããã©ã³ãµãŒã® [ã¢ããªã±ãŒã·ã§ã³ ã«ãŒã«] ã¿ãã«ç§»åããŸãã
- ååãã«ãŒã«ã䜿çšããã¹ã¯ãªãããéžæãããä¿æããã¯ãªãã¯ããŸãã
- ã«ãŒã«ãäœæããåŸããã§ã«æ§æãããŠããä»®æ³ãµãŒããŒãç·šéããå¿
èŠããããŸãã
- [詳现èšå®] ã¿ãã§ãäœæããã«ãŒã«ãè¿œå ããŸãã
äžã®äŸã§ã¯ãtlsv1 ãµããŒããæå¹ã«ããŸããã
ããã«ããã€ãã®äŸã瀺ããŸãã
ãã©ãã£ãã¯ãå¥ã®ããŒã«ã«ãªãã€ã¬ã¯ãããŸãã
ãã®ã¹ã¯ãªããã䜿çšãããšãã¡ã€ã³ ããŒã«ãããŠã³ããå Žåã«ãã©ãã£ãã¯ãå¥ã®ãã©ã³ã·ã³ã° ããŒã«ã«ãªãã€ã¬ã¯ãã§ããŸãã ã«ãŒã«ãæ©èœããã«ã¯ããã©ã³ãµãŒäžã«è€æ°ã®ããŒã«ãæ§æãããŠãããã¡ã€ã³ ããŒã«ã®ãã¹ãŠã®ã¡ã³ããŒãããŠã³ç¶æ
ã§ããå¿
èŠããããŸãã ããŒã«ã® ID ã§ã¯ãªããååãæå®ããå¿
èŠããããŸãã
acl pool_down nbsrv(PRIMARY_POOL_NAME) eq 0
use_backend SECONDARY_POOL_NAME if PRIMARY_POOL_NAME
ãã©ãã£ãã¯ãå€éšãªãœãŒã¹ã«ãªãã€ã¬ã¯ãããŸãã
ããã§ã¯ãã¡ã€ã³ ããŒã«ã®ãã¹ãŠã®ã¡ã³ããŒãããŠã³ããå Žåã«ãã©ãã£ãã¯ãå€éš Web ãµã€ãã«ãªãã€ã¬ã¯ãããŸãã
acl pool_down nbsrv(NAME_OF_POOL) eq 0
redirect location http://www.example.com if pool_down
ããã«å€ãã®äŸ
ãã©ã³ãµãŒã«ã€ããŠã¯ä»¥äžã§ãã ã質åãããããŸãããããã€ã§ããçãããããŸãã
åºæïŒ habr.com