Recommended
Recommended
More Related Content
Similar to HAProxyConf22: Scaling Bedrock Video Delivery to 50 Million Users with HAProxy
Similar to HAProxyConf22: Scaling Bedrock Video Delivery to 50 Million Users with HAProxy (20)
Recently uploaded
Recently uploaded (20)
HAProxyConf22: Scaling Bedrock Video Delivery to 50 Million Users with HAProxy
- 1. Scaling Bedrock video delivery to 50 million users with HAProxy HAProxyConf 2022 Paris, France Vincent GALLISSOT Bedrock Streaming Lead Cloud Architect @vgallissot
- 2. HAProxyConf 2019 RTL's Journey to Kubernetes with HAProxy
- 4. 50 million active users on our customers' platforms HYBRID Netherlands SVOD France France AVOD Belgium HYBRID Hungary HYBRID
- 5. Launched in 2020 Migrated to in 2022
- 6. 32 years of episodes 870 episodes aired
- 7. Multiple CDNs for each customer Origin of CDNs ● Performant ● Resilient ● Cost effective
- 8. VOD Origin: between storage and CDNs
- 9. Packaging: gives control to the player
- 10. Packaging: cutting one video into small chunks
- 11. Just in Time Packaging with USP Origin
- 12. Old days: On Premise VOD Origin Video storage Cache to absorb the load Just In Time Packaging No auto- scaling No customer isolation
- 13. Issues during lockdown July 2020 Let’s migrate to AWS
- 14. V1 on AWS: a NLB & an ASG Video storage Single TLS endpoint Auto scaling (CPU & Bandwidth)
- 15. Load tests Photo by Andrew Wulf on Unsplash
- 16. Performances and scaling not prod ready 5500 GET/S Scales well Scales well Load test: 2000 GET/S
- 17. Why do we reach this limit? How can we push this limit?
- 18. Under the hood: metadata 65KB 15B
- 19. Metadata can be cached locally 1000 hours of video = 70GB of cache
- 20. NLB: no advanced load balancing algorithms Local cache RR & LOR
- 21. The cache is ineffective with Round Robin or Least Outstanding Requests
- 22. The more we scale up, the worse it gets
- 23. Consistent Hashing to the rescue
- 24. Consistent Hashing + scaling = ♥
- 25. V2: Add HAProxy with Consistent Hashing Local cache Consistent Hashing
- 26. Two levels of load balancing Same list of backends
- 27. Haproxy Service Discovery Orchestrator
- 28. HSDO: Server list stored in DynamoDB
- 29. HSDO client: Using the runtime API def sendHaproxyCommand(self, command): command = command + "n" haproxySock = socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) try: haproxySock.connect(self.socketPath) haproxySock.send(command.encode("utf-8")) https://github.com/BedrockStreaming/hsdo
- 30. HSDO client: Using the runtime API https://github.com/BedrockStreaming/hsdo commands.append( "set server %s/%s addr %s port %s" % ( backendName, serverName, server.IPAddress, self.backendServerPort ) )
- 31. HSDO client: Using the runtime API https://github.com/BedrockStreaming/hsdo commands.append( "set server %s/%s weight %s" % ( backendName, serverName, server.weight ) )
- 32. HSDO client: Makes sure the running configuration respects the desired state https://github.com/BedrockStreaming/hsdo def checkBackendConf(self): stat = self.sendHaproxyCommand("show stat") check = self.backendConfReady(stat)
- 33. Simple backend definition backend usp-origin balance hdr(X-VIDEO-ID) hash-type consistent sdbm avalanche option httpchk HEAD /status server-template usp-origin ${AUTO_SCALING_GROUP_MAX_SIZE} 127.0.0.1:80 check disabled
- 34. V2: >60% fewer calls to S3 storage Sudden cache drop
- 35. Gradual ramping up controlled by HSDO Server
- 37. Consistent Hashing unwanted behavior
- 38. Scaling policies are averages
- 39. HAProxyConf 2019 - Andrew Rodland
- 40. Consistent Hashing with Bounded Loads
- 44. Too much traffic for a single server
- 45. Packets Per Second limit
- 46. Micro Bursts
- 47. Failover mechanisms: server throttles timeout connect 20ms
- 48. Failover mechanisms: bad HTTP codes retry-on 502-504 502-504
- 49. Highlights of our HAProxy configuration defaults timeout connect 20ms timeout server 2s retries 2 retry-on 502 503 504 conn-failure empty-response response-timeout option redispatch default-server inter 1s fall 1 rise 10 observe layer7
- 50. Redispatch happens all the time
- 51. We migrated all onprem video traffic to this V2 in September 2020
- 52. V2 is too expensive
- 53. Inter-AZ traffic: the financial abyss
- 54. V3: remove inter-AZ traffic
- 55. V3: remove inter-AZ traffic Single AZ HSDO client sticks to its own AZ servers
- 56. V3: more resilient to an AZ failure
- 57. V3: cheaper
- 59. V3: fallback backend frontend fe_main acl not-enough-ready-servers-in-AZ nbsrv(usp-origin) lt ${HAPROXY_BACKEND_SERVERS_MIN_SIZE} use_backend fallback-usp-origin if not-enough-ready-servers-in-AZ use_backend usp-origin
- 60. 100% EC2 Spot instances 15%
- 61. Running a Load Balancer on EC2 Spot instances ● Use at least 12 different instance types ● Mix instance families (C, M, R, etc.) ● Prefer many small servers rather than a few large ones ● Take care to the “UP to” vs “baseline” bandwidths
- 62. EC2 “Up to” bandwidth Source: https://aws.amazon.com/ec2/instance-types/#Compute_Optimized
- 63. EC2 “Up to” bandwidth Source: https://aws.amazon.com/ec2/instance-types/#Compute_Optimized
- 64. EC2 baseline bandwidth Source: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/compute- optimized-instances.html#compute-network-performance
- 65. Time for V4 ?
- 66. V4: remove Network Load Balancer
- 67. V3 has a 100% uptime over the past 22 months
- 68. Using HAProxy on AWS is not complex
- 69. Thank you Vincent GALLISSOT Bedrock Streaming Lead Cloud Architect @vgallissot
Editor's Notes
- about Kubernetes and cloud, Load balancing algorithms & streaming
- tech company basically B2B2C
- 50 million Advertised, Subscribed VOD or Hybrid
- We face several challenges Sometimes we help existing platform Video Cache layers will be empty
- Customer want to publish lot of contents all at once Remove technical barriers
- Respecting our customers’ partnerships Improve user experience
- Static file CDN cache
- Packaging gives control First download a manifest
- 6s duration Manifest follow playlist Adapt video quality to the user’s bandwidth
- Store entire file manifest alongside the video Compute when needed CDN to cache Advantage of both the cache and doing things dynamically
- Worked well for 10 years Follow Bedrock business model Customer A customer B
- COVID Consumed lot of streaming Stability issues
- Use managed services as much as possible TLS endpoint Scaling CPU bandwidth Skeleton
- Load tests before migration Do 20 times more than on-prem
- S3 bucket scales after some time handle the load while it scales
- 7mn
- Player asks for chunk metadata shared for the same video
- Cache metadata locally Between USP and S3 bucket TCP Keepalive Nginx 1 request, then queue Increase performance
- Increase cache efficiency advanced load balancing Round Robin Least Outstanding Requests
- no cache specification Video request: cache1, cache2, cache1, cache2 each server is a duplicate of the cache
- Each cache server is less likely to have the answer in its cache and will proxy the request to S3 instead Ineffective cache means bad performances, higher costs and maybe, S3 rate-limiting we pay more for a worse service
- the traffic of a video is always sent to the same cache Metadata of a video is specific to a single cacher server
- The more servers there are, the more specific and optimized the cache is Scaling becomes more efficient
- NLB = single TLS Abstract HAProxy scaling Health checks
- NLB = single TLS Servers in the same order Populate backend server list
- No file management
- Server handle all backend servers info: ID’s, weights, etc.
- Runtime API connect through Unix socket Last line we send a command
- Modify servers Enable disable
- weight
- Client Keeps track of the desired state from DynamoDB Compares to running config
- HSDO controls backend configuration server-template as many backend servers No create/delete server, only modify disabled by default: no traffic
- good CHR: 60% fewer calls Good perfs, effective costs Scale-up = sudden cache drop -> time needed for a new server to populate its cache
- We limit the impact of Cache Hit Ratio drops HSDO server to ensure consistency Increase weight every X secs Keep good performances when we scale-up Scaling by design Haproxy slowstart
- 19mn
- not all contents are equally popular few loaded servers Most servers doing nothing
- Averages means no scaling if only 1 server is loaded
- Andrew from vimeo Gave us the idea to do the same
- Too many requests Overflow traffic harmonize the load
- overflow We still optimize the cache even in case of overflow
- 40% more connections than the average Load is smoothed on all servers we can scale up & use consistent hashing
- 22 mn
- Network limits on AWS Bandwidth is throttled
- Limit on packets per second Queued or dropped
- very short duration increases latency Reduces overall bandwidth Impacts performances
- New TCP connection needs < 1ms Server in bad shape, fail quickly
- S3 or USP can answer badly No retry on 500
- Redispatch respects consistent hashing Like bounded loads → By design At a very low rate No impact on performances
- 25 mn
- Most expensive cost is inter-AZ EC2-Other : Inter-AZ traffic
- HAProxy uses all AZ by design
- Splitting traffic forced us to duplicate EC2 servers → to keep resiliency
- easy to do Duplicate all AutoScalingGroups Dedicate each of them to a single AZ HSDO Client sticks
- keep cache and good performances
- Deployed V3 in november Still migrating onprem to cloud traffic All bars are increasing EC2-other drops to almost 0
- We kept a fallback backend, multi-AZ, that we can use when we don’t have enough ready servers in the primary backend. It’s populated with HSDO, so this secondary backend is the exact same for all HAProxy servers on every AZs, to try to optimize as much as possible, even in a degraded state.
- any available server in the fallback-backend pay more to provide the service at any cost
- multi-AZ fallback
- Compute = 15% of costs Spot instances Reclaim notification = launch new server NLB more expensive than the whole compute
- Avoid mass reclaims
- The “Up to” traffic in the overall doc
- Burst is not guaranteed, not even for 1s Baseline capacity is guaranteed
- 24 times less
- 33mn
- single TLS endpoint for dozens of haproxy cost optimization -> won’t increase performances or resiliency
- no rush for V4
- Easy to run HAProxy on AWS -> APIs Provide VOD to 50 million users