LINE Corporation, profile picture
Uploaded byLINE Corporation
PDF, PPTX4,409 views

ソフトウェアでのパケット処理あれこれ〜何故我々はロードバランサを自作するに至ったのか〜

This document summarizes a LINE Developer meetup in Kyoto on load balancing techniques. It discusses LINE's private cloud "Verda" and the load balancing architecture used including L3, L4, and L7 load balancers. It also covers programming load balancers using eBPF and XDP to improve performance by handling traffic directly on the NIC. Load testing is discussed using tools like TRex to generate and analyze traffic.

Technology
In this document
Powered by AI

Introduction to the LINE Developer meetup on 2018-09-27 in Kyoto. Mentions LINE Engineer Insights, OpenStack, and private cloud 'Verda'.

Visual representations of Load Balancer systems including Layer 4 and Layer 7 configurations using OpenStack technology.

Details on client configurations, session table management, and multi-tiered architecture for load balancing.

Analysis of hardware and software components for network switches and load balancers including device costs.

Illustrations of consistent hashing and traffic flow management using advanced load balancer techniques.

Techniques for performance monitoring including packet dropping tactics and traffic generation applications.

Details on configuring OpenStack Octavia and health check mechanisms for load balancers and real servers.

Final remarks and a summary of the LINE Developer meetup, reinforcing topics covered throughout the presentation.

Embed presentation

Download as PDF, PPTX
L D C a M Y e NK I LEC 194 5 28 72 0 9 9 2 598 0 9 / 58 9 9 # #
d a pn / 7 O N N A l V Lo ( ekB 2 - /04 L S 2 1/ O 7/1 )/ / 02 / / -2 02 )//- icB BekB 2018-09-27 LINE Developer meetup #45 in Kyoto 2 • LINE Engineer Insights vol.4 OpenStack Private cloud "Verda" (2017-07) https://engineering.linecorp.com/ja/blog/detail/158 • Verda Cloud Family (2017-09) https://www.slideshare.net/linecorp/verda-cloud-family • Introduction to our private cloud Verda at a glance (2018-08) https://www.slideshare.net/linecorp/introduction-to-our-private-cloud-verda-at-a-glance
1 ( ) 2 A ( B 1 ( B : E 2018-09-27 LINE Developer meetup #45 in Kyoto 3
2018-09-27 LINE Developer meetup #45 in Kyoto 4
+ ) + B S 7 • + ) D N 6 • 7 E6N • +2 6I • S SX • V 6 12 • B0( 6 LP6 2018-09-27 LINE Developer meetup #45 in Kyoto 5
) ( I aL P V S B T 2018-09-27 LINE Developer meetup #45 in Kyoto 6 Real Server (RS)LBClient VIP RSIPi • RS • IP • TLS (TLS Offload) • …
2018-09-27 LINE Developer meetup #45 in Kyoto 7 Layer 4 LB (L4LB) Layer 7 LB (L7LB) TCP TCP • IP/TCP/UDP • • (L7LB ) HTTP(S) HTTP(S) • • HTTP • (L4LB )
2018-09-27 LINE Developer meetup #45 in Kyoto 8 OpenStack Octavia HAProxy LVS (IPVS) LBaaS Frontend LBaaS Backend LB API / Web UI API API / Web UI / CLI
- I m vi cDb df g eg n l ) A7 1 3 4B ( t a n +1 1 3 7 ; 3;3 7 l y LR 2 1ou l E T R S N 2018-09-27 LINE Developer meetup #45 in Kyoto 9
( ) ( ) D R ( 3 3 3 ) 3 ? R ( e S g :<fB L ?n L lia r R S =ct 2018-09-27 LINE Developer meetup #45 in Kyoto 10 RS 1 RS 2 Client 1 Client 2 Source Destination Real Server Client 1:43210 VIP 1:443 RS 1:443 Client 2:34567 VIP 1:443 RS 2:443 VIP 1 Session Table
T + B . E 2 3 HR B T L S x E + 2 + x 3 2 . 1 D C 2018-09-27 LINE Developer meetup #45 in Kyoto 11
1 L + 1 1 1 & 1 4B M F G N , - 2018-09-27 LINE Developer meetup #45 in Kyoto 12 1 + 1 N + 1 Multi-tier Client L4LB (Hardware) Real Server : In service : Not in service L4LB (Software) Real ServerL7LB (Software) L3 Switch (Hardware) Client Stateful L3DSR TCP/HTTP(S) Proxy Stateless L3DSR ECMP [1] http://yunazuno.hatenablog.com/entry/2016/02/29/090001
+ ? N + M 1 :- N 2018-09-27 LINE Developer meetup #45 in Kyoto 13 L3 Switch L4LB L7LB Whitebox Switch 100G x 32 ports JPY 2,000,000 x86 Linux Server 25G x 1 ports JPY 800,000 x86 Linux Server 25G x 1 ports JPY 800,000
B - 4 41 : 2018-09-27 LINE Developer meetup #45 in Kyoto 14 Equal Cost Multi Path (ECMP) VIP: 192.0.2.1/32 L4LB-1 Hash(5-tuple) -> L4LB-[1-3] L3 Switch VIP: 192.0.2.1/32 L4LB-2 VIP: 192.0.2.1/32 L4LB-3 eBGP peer Flow X Flow Y 5-tuple = (Src IP, Dst IP, Src Port, Dst Port, Proto)
C 2 2 2 2 B 3 :7 2018-09-27 LINE Developer meetup #45 in Kyoto 15 L3 Switch L4LB-1 L7LB-1 L7LB-2 L4LB-2 L7LB-3 L7LB-4 ConsistentHash(Hash(5-tuple)) -> L7LB-[1-4] Flow X Flow Y
2018-09-27 LINE Developer meetup #45 in Kyoto 16
L4LB Program ) 4 4 B 4 ( 2018-09-27 LINE Developer meetup #45 in Kyoto 17 Rx Tx Match Lookup Rewrite Table VIP-Backend table Statistics table From L3 Switch To L7 LB NIC 1. Match Dst. IP/Port 2. Lookup Hash Real Server 3. Rewrite IP Dst. IP, DSCP
( ( ) D ( ( ( BF L 2018-09-27 LINE Developer meetup #45 in Kyoto eBPF Map VIP-Backend table Statistics table C eBPF C code (Data Plane) Clang/LLVM eBPF Bytecode Python Control Plane eBPF JIT eBPF VM API VIP->Backend lookup Statistics KernelUser eBPF Verifier 18 BGP daemon XDP Program From L3 Switch To L7LB Kernel NIC Advertise VIP Compiler 1. Lookup VIP 2. Hash(5-tuple) 3. Modify IP header Maintain map
DP D ? ? D X P K 2018-09-27 LINE Developer meetup #45 in Kyoto 19 XDP NICKernelKernelUser NIC Driver EthernetIPv4TCPApp Socket NIC Driver XDP App Ether net IPv4TCPApp Socket
? 6 I D 1 2018-09-27 LINE Developer meetup #45 in Kyoto 20 Cloudflare [1] How to drop 10 million packets per second - The Cloudflare Blog https://blog.cloudflare.com/how-to-drop-10-million-packets/
AN. P ? X A . ? DC Q AI ? U 2018-09-27 LINE Developer meetup #45 in Kyoto 21
) MN I A C (P ( (P ( 2018-09-27 LINE Developer meetup #45 in Kyoto 22 NIC CPU Memory PCIe Interconect Fast Slow
NIC CPU &) F UC B A &) F U P H C - ) )- &) / - ( C 2018-09-27 LINE Developer meetup #45 in Kyoto 23 Queue 0 Queue 1 Core 0 L2 Cache Core 1 L2 Cache L3 Cache + Memory
1 & & & 2018-09-27 LINE Developer meetup #45 in Kyoto 24 [1] Cisco's TRex https://trex-tgn.cisco.com/ [2] GitHub - opcm/pcm https://github.com/opcm/pcm [3] GitHub - cloudflare/ebpf_exporter https://github.com/cloudflare/ebpf_exporter TRex Server (Traffic Generator) L4LB Generate packets Collect statistics • Python • • Exporter L4LB NIC • Grafana • PCM[2] CPU • ebpf_exporter[3]
. ?A D B ?A 2018-09-27 LINE Developer meetup #45 in Kyoto 25 OpenStack Octavia HAProxy LVS (IPVS) LBaaS Frontend LBaaS Backend LB API / Web UI API API / Web UI / CLI オンプレミス環境での典型的なLBサービス構成 (D-Plane) (C-Plane) Verda LBaaS ( , BGPd ) 800 LoC (in C)14,000 LoC (in Python)
: - 3 DC 2018-09-27 LINE Developer meetup #45 in Kyoto 26 Health Check Agent on L4LB Real Server Real Server • VIP • DSCP Dst. IP VIP 4 4 4 4 Python Scapy
2018-09-27 LINE Developer meetup #45 in Kyoto 27
! ( E L B I ( ( ( N () ! ! N 2018-09-27 LINE Developer meetup #45 in Kyoto 28
K F FI 4 5:1/ / 9 6. /. 11 5 5 : 7 4 5:1/ / 9 6. /. 11 5 5 : 7 7. 4 5:12 7 7. / 6 6. /. 11 5 1: 5:11 5:2 . / 1 1 1 91: :1 7 : 1 : 4 5:1/ / 9 6. /. 11 5 5 : 2018-09-27 LINE Developer meetup #45 in Kyoto 29

More Related Content

PDF
MLflow + Kubeflow MLプラットフォーム事例 #sparktokyo
byYahoo!デベロッパーネットワーク
 
PDF
PostgreSQLをKubernetes上で活用するためのOperator紹介!(Cloud Native Database Meetup #3 発表資料)
byNTT DATA Technology & Innovation
 
PPTX
分散システムについて語らせてくれ
byKumazaki Hiroki
 
PDF
Kubernetes 疲れに Azure Container Apps はいかがでしょうか?(江東区合同ライトニングトーク 発表資料)
byNTT DATA Technology & Innovation
 
PPTX
Prometheus入門から運用まで徹底解説
by貴仁 大和屋
 
PPTX
監査要件を有するシステムに対する PostgreSQL 導入の課題と可能性
byOhyama Masanori
 
PDF
コンテナセキュリティにおける権限制御(OCHaCafe5 #3 Kubernetes のセキュリティ 発表資料)
byNTT DATA Technology & Innovation
 
PPTX
やってはいけない空振りDelete
byYu Yamada
 
MLflow + Kubeflow MLプラットフォーム事例 #sparktokyo
byYahoo!デベロッパーネットワーク
 
PostgreSQLをKubernetes上で活用するためのOperator紹介!(Cloud Native Database Meetup #3 発表資料)
byNTT DATA Technology & Innovation
 
分散システムについて語らせてくれ
byKumazaki Hiroki
 
Kubernetes 疲れに Azure Container Apps はいかがでしょうか?(江東区合同ライトニングトーク 発表資料)
byNTT DATA Technology & Innovation
 
Prometheus入門から運用まで徹底解説
by貴仁 大和屋
 
監査要件を有するシステムに対する PostgreSQL 導入の課題と可能性
byOhyama Masanori
 
コンテナセキュリティにおける権限制御(OCHaCafe5 #3 Kubernetes のセキュリティ 発表資料)
byNTT DATA Technology & Innovation
 
やってはいけない空振りDelete
byYu Yamada
 

What's hot

PDF
SQLアンチパターン 幻の第26章「とりあえず削除フラグ」
byTakuto Wada
 
PDF
コンテナとimmutableとわたし。あとセキュリティ。(Kubernetes Novice Tokyo #15 発表資料)
byNTT DATA Technology & Innovation
 
PDF
速習!論理レプリケーション ~基礎から最新動向まで~(PostgreSQL Conference Japan 2022 発表資料)
byNTT DATA Technology & Innovation
 
PDF
At least onceってぶっちゃけ問題の先送りだったよね #kafkajp
byYahoo!デベロッパーネットワーク
 
PPTX
Docker Tokyo
bycyberblack28 Ichikawa
 
PDF
コンテナ未経験新人が学ぶコンテナ技術入門
byKohei Tokunaga
 
PDF
Javaコードが速く実⾏される秘密 - JITコンパイラ⼊⾨(JJUG CCC 2020 Fall講演資料)
byNTT DATA Technology & Innovation
 
PDF
Kubernetes 基盤における非機能試験の deepdive(Kubernetes Novice Tokyo #17 発表資料)
byNTT DATA Technology & Innovation
 
PPTX
世の中のPostgreSQLエンジニアのpsql設定(第34回PostgreSQLアンカンファレンス@オンライン 発表資料)
byNTT DATA Technology & Innovation
 
PDF
インフラエンジニアの綺麗で優しい手順書の書き方
byShohei Koyama
 
PDF
わかる!metadata.managedFields / Kubernetes Meetup Tokyo 48
byPreferred Networks
 
PDF
まずやっとくPostgreSQLチューニング
byKosuke Kida
 
PDF
【第26回Elasticsearch勉強会】Logstashとともに振り返る、やっちまった事例ごった煮
byHibino Hisashi
 
PDF
Grafana LokiではじめるKubernetesロギングハンズオン(NTT Tech Conference #4 ハンズオン資料)
byNTT DATA Technology & Innovation
 
PDF
DockerとPodmanの比較
byAkihiro Suda
 
PDF
Java仮想マシンの実装技術
byKiyokuni Kawachiya
 
PDF
JenkinsとCodeBuildとCloud Buildと私
byShoji Shirotori
 
PDF
Fargate起動歴1日の男が語る運用の勘どころ
byYuto Komai
 
PPTX
Ansible specでテストをする話
byKeijiUehata1
 
PDF
A5 SQL Mk-2の便利な機能をお教えします
byester41
 
SQLアンチパターン 幻の第26章「とりあえず削除フラグ」
byTakuto Wada
 
コンテナとimmutableとわたし。あとセキュリティ。(Kubernetes Novice Tokyo #15 発表資料)
byNTT DATA Technology & Innovation
 
速習!論理レプリケーション ~基礎から最新動向まで~(PostgreSQL Conference Japan 2022 発表資料)
byNTT DATA Technology & Innovation
 
At least onceってぶっちゃけ問題の先送りだったよね #kafkajp
byYahoo!デベロッパーネットワーク
 
Docker Tokyo
bycyberblack28 Ichikawa
 
コンテナ未経験新人が学ぶコンテナ技術入門
byKohei Tokunaga
 
Javaコードが速く実⾏される秘密 - JITコンパイラ⼊⾨(JJUG CCC 2020 Fall講演資料)
byNTT DATA Technology & Innovation
 
Kubernetes 基盤における非機能試験の deepdive(Kubernetes Novice Tokyo #17 発表資料)
byNTT DATA Technology & Innovation
 
世の中のPostgreSQLエンジニアのpsql設定(第34回PostgreSQLアンカンファレンス@オンライン 発表資料)
byNTT DATA Technology & Innovation
 
インフラエンジニアの綺麗で優しい手順書の書き方
byShohei Koyama
 
わかる!metadata.managedFields / Kubernetes Meetup Tokyo 48
byPreferred Networks
 
まずやっとくPostgreSQLチューニング
byKosuke Kida
 
【第26回Elasticsearch勉強会】Logstashとともに振り返る、やっちまった事例ごった煮
byHibino Hisashi
 
Grafana LokiではじめるKubernetesロギングハンズオン(NTT Tech Conference #4 ハンズオン資料)
byNTT DATA Technology & Innovation
 
DockerとPodmanの比較
byAkihiro Suda
 
Java仮想マシンの実装技術
byKiyokuni Kawachiya
 
JenkinsとCodeBuildとCloud Buildと私
byShoji Shirotori
 
Fargate起動歴1日の男が語る運用の勘どころ
byYuto Komai
 
Ansible specでテストをする話
byKeijiUehata1
 
A5 SQL Mk-2の便利な機能をお教えします
byester41
 

Similar to ソフトウェアでのパケット処理あれこれ〜何故我々はロードバランサを自作するに至ったのか〜

PDF
Introduction to our private cloud Verda at a glance
byLINE Corporation
 
PDF
LINEʼs OpenStack Networking Challenge
byLINE Corporation
 
PDF
M2M関連状況 roll&core WG meeting in IETF86
byShoichi Sakane
 
PPTX
Infra@LINE_Chris
byLINE_Engineer
 
PDF
HAProxyconf 2019 - Criteo - Transitioning from Ticketing to LBaaS
bypierrecdn -
 
PDF
Automating auto-scaled load balancer based on linux and vm orchestrator
byAndrew Yongjoon Kong
 
PDF
Softwares on Large Scale Internet Services
bySATOSHI TAGOMORI
 
PDF
Cloud Monitors Cloud
byRaymond Burkholder
 
PDF
OpenStack Quantum
byopenstackindia
 
PDF
Quantum - The Network Mechanics
byKiran Murari
 
PDF
PCE, OpenFlow, & the Centralized Control Plane
byMetaswitch NTD
 
Introduction to our private cloud Verda at a glance
byLINE Corporation
 
LINEʼs OpenStack Networking Challenge
byLINE Corporation
 
M2M関連状況 roll&core WG meeting in IETF86
byShoichi Sakane
 
Infra@LINE_Chris
byLINE_Engineer
 
HAProxyconf 2019 - Criteo - Transitioning from Ticketing to LBaaS
bypierrecdn -
 
Automating auto-scaled load balancer based on linux and vm orchestrator
byAndrew Yongjoon Kong
 
Softwares on Large Scale Internet Services
bySATOSHI TAGOMORI
 
Cloud Monitors Cloud
byRaymond Burkholder
 
OpenStack Quantum
byopenstackindia
 
Quantum - The Network Mechanics
byKiran Murari
 
PCE, OpenFlow, & the Centralized Control Plane
byMetaswitch NTD
 

More from LINE Corporation

PDF
​LINE 技術合作夥伴與應用分享
byLINE Corporation
 
PDF
LINE 區塊鏈平台及代幣經濟 - LINK Chain及LINK介紹
byLINE Corporation
 
PDF
在 LINE 私有雲中使用 Managed Kubernetes
byLINE Corporation
 
PDF
LINE Platform API Update - 打造一個更好的Chatbot服務
byLINE Corporation
 
PPTX
GA Test Automation
byLINE Corporation
 
PDF
LINE TODAY高效率的敏捷測試開發技巧
byLINE Corporation
 
PDF
LINE 新星計劃介紹與新創團隊分享
byLINE Corporation
 
PDF
LINE Chatbot - 活動報名報到設計分享
byLINE Corporation
 
PDF
LINE Pay - 一卡通支付新體驗
byLINE Corporation
 
PDF
JJUG CCC 2018 Fall 懇親会LT
byLINE Corporation
 
PDF
日本開發者大會短講分享
byLINE Corporation
 
PDF
Reduce dependency on Rx with Kotlin Coroutines
byLINE Corporation
 
PDF
The Magic of LINE 購物 Testing
byLINE Corporation
 
PDF
LINE Things - LINE IoT平台新技術分享
byLINE Corporation
 
PDF
LINE 開發者社群經營與技術推廣
byLINE Corporation
 
PDF
UI Automation Test with JUnit5
byLINE Corporation
 
PDF
Feature Detection for UI Testing
byLINE Corporation
 
PDF
Use Kotlin scripts and Clova SDK to build your Clova extension
byLINE Corporation
 
PDF
Kotlin/NativeでAndroidのNativeメソッドを実装してみた
byLINE Corporation
 
PDF
Keynote - ​LINE 的技術策略佈局與跨國產品開發
byLINE Corporation
 
​LINE 技術合作夥伴與應用分享
byLINE Corporation
 
LINE 區塊鏈平台及代幣經濟 - LINK Chain及LINK介紹
byLINE Corporation
 
在 LINE 私有雲中使用 Managed Kubernetes
byLINE Corporation
 
LINE Platform API Update - 打造一個更好的Chatbot服務
byLINE Corporation
 
GA Test Automation
byLINE Corporation
 
LINE TODAY高效率的敏捷測試開發技巧
byLINE Corporation
 
LINE 新星計劃介紹與新創團隊分享
byLINE Corporation
 
LINE Chatbot - 活動報名報到設計分享
byLINE Corporation
 
LINE Pay - 一卡通支付新體驗
byLINE Corporation
 
JJUG CCC 2018 Fall 懇親会LT
byLINE Corporation
 
日本開發者大會短講分享
byLINE Corporation
 
Reduce dependency on Rx with Kotlin Coroutines
byLINE Corporation
 
The Magic of LINE 購物 Testing
byLINE Corporation
 
LINE Things - LINE IoT平台新技術分享
byLINE Corporation
 
LINE 開發者社群經營與技術推廣
byLINE Corporation
 
UI Automation Test with JUnit5
byLINE Corporation
 
Feature Detection for UI Testing
byLINE Corporation
 
Use Kotlin scripts and Clova SDK to build your Clova extension
byLINE Corporation
 
Kotlin/NativeでAndroidのNativeメソッドを実装してみた
byLINE Corporation
 
Keynote - ​LINE 的技術策略佈局與跨國產品開發
byLINE Corporation
 

Recently uploaded

PDF
[BDD 2025 - Full-Stack Development] PHP in AI Age: The Laravel Way. (Rizqy Hi...
byWintari Yasmin
 
PDF
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
PDF
Lets Build a Serverless Function with Kiro
byChris Bingham
 
PDF
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
PDF
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
PDF
Transforming Content Operations in the Age of AI
byEnterprise Knowledge
 
PDF
[BDD 2025 - Mobile Development] Crafting Immersive UI with E2E and AGSL Shade...
byWintari Yasmin
 
PDF
How Much Does It Cost to Build an eCommerce Website in 2025.pdf
byPixlogix Infotech
 
PDF
Agentic Intro and Hands-on: Build your first Coded Agent
byUiPathCommunity
 
PDF
[BDD 2025 - Full-Stack Development] Digital Accessibility: Why Developers nee...
bywintari3
 
PDF
[BDD 2025 - Mobile Development] Mobile Engineer and Software Engineer: Are we...
bywintari3
 
PDF
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
PPTX
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
PPTX
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
PDF
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
PPTX
kernel PPT (Explanation of Windows Kernal).pptx
byINFOBYTES1
 
PDF
The Evolving Role of the CEO in the Age of AI
byPipal Tree Services Executive Search Firm
 
PDF
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
PDF
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
PDF
Cybersecurity Prevention and Detection: Unit 2
byVICTOR MAESTRE RAMIREZ
 
[BDD 2025 - Full-Stack Development] PHP in AI Age: The Laravel Way. (Rizqy Hi...
byWintari Yasmin
 
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
Lets Build a Serverless Function with Kiro
byChris Bingham
 
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
Cheryl Hung, Vibe Coding Auth Without Melting Down! isaqb Software Architectu...
byCheryl Hung
 
Transforming Content Operations in the Age of AI
byEnterprise Knowledge
 
[BDD 2025 - Mobile Development] Crafting Immersive UI with E2E and AGSL Shade...
byWintari Yasmin
 
How Much Does It Cost to Build an eCommerce Website in 2025.pdf
byPixlogix Infotech
 
Agentic Intro and Hands-on: Build your first Coded Agent
byUiPathCommunity
 
[BDD 2025 - Full-Stack Development] Digital Accessibility: Why Developers nee...
bywintari3
 
[BDD 2025 - Mobile Development] Mobile Engineer and Software Engineer: Are we...
bywintari3
 
[BDD 2025 - Mobile Development] Exploring Apple’s On-Device FoundationModels
byWintari Yasmin
 
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
kernel PPT (Explanation of Windows Kernal).pptx
byINFOBYTES1
 
The Evolving Role of the CEO in the Age of AI
byPipal Tree Services Executive Search Firm
 
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
Cybersecurity Prevention and Detection: Unit 2
byVICTOR MAESTRE RAMIREZ
 

ソフトウェアでのパケット処理あれこれ〜何故我々はロードバランサを自作するに至ったのか〜

  • 1.
    L D C aM Y e NK I LEC 194 5 28 72 0 9 9 2 598 0 9 / 58 9 9 # #
  • 2.
    d a pn /7 O N N A l V Lo ( ekB 2 - /04 L S 2 1/ O 7/1 )/ / 02 / / -2 02 )//- icB BekB 2018-09-27 LINE Developer meetup #45 in Kyoto 2 • LINE Engineer Insights vol.4 OpenStack Private cloud "Verda" (2017-07) https://engineering.linecorp.com/ja/blog/detail/158 • Verda Cloud Family (2017-09) https://www.slideshare.net/linecorp/verda-cloud-family • Introduction to our private cloud Verda at a glance (2018-08) https://www.slideshare.net/linecorp/introduction-to-our-private-cloud-verda-at-a-glance
  • 3.
    1 ( )2 A ( B 1 ( B : E 2018-09-27 LINE Developer meetup #45 in Kyoto 3
  • 4.
    2018-09-27 LINE Developermeetup #45 in Kyoto 4
  • 5.
    + ) +B S 7 • + ) D N 6 • 7 E6N • +2 6I • S SX • V 6 12 • B0( 6 LP6 2018-09-27 LINE Developer meetup #45 in Kyoto 5
  • 6.
    ) ( I aLP V S B T 2018-09-27 LINE Developer meetup #45 in Kyoto 6 Real Server (RS)LBClient VIP RSIPi • RS • IP • TLS (TLS Offload) • …
  • 7.
    2018-09-27 LINE Developermeetup #45 in Kyoto 7 Layer 4 LB (L4LB) Layer 7 LB (L7LB) TCP TCP • IP/TCP/UDP • • (L7LB ) HTTP(S) HTTP(S) • • HTTP • (L4LB )
  • 8.
    2018-09-27 LINE Developermeetup #45 in Kyoto 8 OpenStack Octavia HAProxy LVS (IPVS) LBaaS Frontend LBaaS Backend LB API / Web UI API API / Web UI / CLI
  • 9.
    - I m vicDb df g eg n l ) A7 1 3 4B ( t a n +1 1 3 7 ; 3;3 7 l y LR 2 1ou l E T R S N 2018-09-27 LINE Developer meetup #45 in Kyoto 9
  • 10.
    ( ) ( )D R ( 3 3 3 ) 3 ? R ( e S g :<fB L ?n L lia r R S =ct 2018-09-27 LINE Developer meetup #45 in Kyoto 10 RS 1 RS 2 Client 1 Client 2 Source Destination Real Server Client 1:43210 VIP 1:443 RS 1:443 Client 2:34567 VIP 1:443 RS 2:443 VIP 1 Session Table
  • 11.
    T + B .E 2 3 HR B T L S x E + 2 + x 3 2 . 1 D C 2018-09-27 LINE Developer meetup #45 in Kyoto 11
  • 12.
    1 L +1 1 1 & 1 4B M F G N , - 2018-09-27 LINE Developer meetup #45 in Kyoto 12 1 + 1 N + 1 Multi-tier Client L4LB (Hardware) Real Server : In service : Not in service L4LB (Software) Real ServerL7LB (Software) L3 Switch (Hardware) Client Stateful L3DSR TCP/HTTP(S) Proxy Stateless L3DSR ECMP [1] http://yunazuno.hatenablog.com/entry/2016/02/29/090001
  • 13.
    + ? N + M1 :- N 2018-09-27 LINE Developer meetup #45 in Kyoto 13 L3 Switch L4LB L7LB Whitebox Switch 100G x 32 ports JPY 2,000,000 x86 Linux Server 25G x 1 ports JPY 800,000 x86 Linux Server 25G x 1 ports JPY 800,000
  • 14.
    B - 4 41: 2018-09-27 LINE Developer meetup #45 in Kyoto 14 Equal Cost Multi Path (ECMP) VIP: 192.0.2.1/32 L4LB-1 Hash(5-tuple) -> L4LB-[1-3] L3 Switch VIP: 192.0.2.1/32 L4LB-2 VIP: 192.0.2.1/32 L4LB-3 eBGP peer Flow X Flow Y 5-tuple = (Src IP, Dst IP, Src Port, Dst Port, Proto)
  • 15.
    C 2 2 22 B 3 :7 2018-09-27 LINE Developer meetup #45 in Kyoto 15 L3 Switch L4LB-1 L7LB-1 L7LB-2 L4LB-2 L7LB-3 L7LB-4 ConsistentHash(Hash(5-tuple)) -> L7LB-[1-4] Flow X Flow Y
  • 16.
    2018-09-27 LINE Developermeetup #45 in Kyoto 16
  • 17.
    L4LB Program ) 4 4B 4 ( 2018-09-27 LINE Developer meetup #45 in Kyoto 17 Rx Tx Match Lookup Rewrite Table VIP-Backend table Statistics table From L3 Switch To L7 LB NIC 1. Match Dst. IP/Port 2. Lookup Hash Real Server 3. Rewrite IP Dst. IP, DSCP
  • 18.
    ( ( )D ( ( ( BF L 2018-09-27 LINE Developer meetup #45 in Kyoto eBPF Map VIP-Backend table Statistics table C eBPF C code (Data Plane) Clang/LLVM eBPF Bytecode Python Control Plane eBPF JIT eBPF VM API VIP->Backend lookup Statistics KernelUser eBPF Verifier 18 BGP daemon XDP Program From L3 Switch To L7LB Kernel NIC Advertise VIP Compiler 1. Lookup VIP 2. Hash(5-tuple) 3. Modify IP header Maintain map
  • 19.
    DP D ? ?D X P K 2018-09-27 LINE Developer meetup #45 in Kyoto 19 XDP NICKernelKernelUser NIC Driver EthernetIPv4TCPApp Socket NIC Driver XDP App Ether net IPv4TCPApp Socket
  • 20.
    ? 6 I D1 2018-09-27 LINE Developer meetup #45 in Kyoto 20 Cloudflare [1] How to drop 10 million packets per second - The Cloudflare Blog https://blog.cloudflare.com/how-to-drop-10-million-packets/
  • 21.
    AN. P ? XA . ? DC Q AI ? U 2018-09-27 LINE Developer meetup #45 in Kyoto 21
  • 22.
    ) MN I AC (P ( (P ( 2018-09-27 LINE Developer meetup #45 in Kyoto 22 NIC CPU Memory PCIe Interconect Fast Slow
  • 23.
    NIC CPU &) FUC B A &) F U P H C - ) )- &) / - ( C 2018-09-27 LINE Developer meetup #45 in Kyoto 23 Queue 0 Queue 1 Core 0 L2 Cache Core 1 L2 Cache L3 Cache + Memory
  • 24.
    1 & & & 2018-09-27LINE Developer meetup #45 in Kyoto 24 [1] Cisco's TRex https://trex-tgn.cisco.com/ [2] GitHub - opcm/pcm https://github.com/opcm/pcm [3] GitHub - cloudflare/ebpf_exporter https://github.com/cloudflare/ebpf_exporter TRex Server (Traffic Generator) L4LB Generate packets Collect statistics • Python • • Exporter L4LB NIC • Grafana • PCM[2] CPU • ebpf_exporter[3]
  • 25.
    . ?A D B?A 2018-09-27 LINE Developer meetup #45 in Kyoto 25 OpenStack Octavia HAProxy LVS (IPVS) LBaaS Frontend LBaaS Backend LB API / Web UI API API / Web UI / CLI オンプレミス環境での典型的なLBサービス構成 (D-Plane) (C-Plane) Verda LBaaS ( , BGPd ) 800 LoC (in C)14,000 LoC (in Python)
  • 26.
    : - 3 DC 2018-09-27LINE Developer meetup #45 in Kyoto 26 Health Check Agent on L4LB Real Server Real Server • VIP • DSCP Dst. IP VIP 4 4 4 4 Python Scapy
  • 27.
    2018-09-27 LINE Developermeetup #45 in Kyoto 27
  • 28.
    ! ( E LB I ( ( ( N () ! ! N 2018-09-27 LINE Developer meetup #45 in Kyoto 28
  • 29.
    K F FI 45:1/ / 9 6. /. 11 5 5 : 7 4 5:1/ / 9 6. /. 11 5 5 : 7 7. 4 5:12 7 7. / 6 6. /. 11 5 1: 5:11 5:2 . / 1 1 1 91: :1 7 : 1 : 4 5:1/ / 9 6. /. 11 5 5 : 2018-09-27 LINE Developer meetup #45 in Kyoto 29