Advancing Loadbalancer.org services with ZEVENET ADC

POSTED ON 13 December, 2022

Overview

Web application security is not a mere incentive for using ZEVENET ADC. Application security is a fully-fledged functionality that includes a Web firewall, DoS protection, a whitelist, blacklist, and an RBL policy. Implementing these measures is important because the internet has become an integral part of modern life since most people leverage online banking, shopping, communication, entertainment, and e-health.

By taking a comprehensive approach to web security, ZEVENET appliance can help protect organizations, their users, and their data from a variety of cyber attacks. This article will guide you if you plan to migrate ADC services from loadbalancer.org to ZEVENET.

Prerequisites

This guide will be of most use to a user that already meets the following bench marks.

  1. An instance of ZEVENET ADC must be installed on your workstation, bare-metal, virtual environment, or a cloud platform. Request an evaluation if you don’t have an instance installed yet.
  2. You must have access to the Web panel. If you don’t, follow this quick installation guide.
  3. You are an active user of Loadbalancer.org and looking for an alternative.
  4. Familiarity with HAproxy configurations since Loadbalancer.org heavily depends on them.
  5. A virtual server is essential for distributing traffic to backend servers. If you haven’t created one, read: Layer 4 and Layer 7 Virtual Server Configuration

Basic concepts

Real servers: These are physical servers, virtual private servers, or containerized environments hosting and serving an application. These servers are called Backends when using ZEVENET ADC.

SSL Termination: To effectively perform content switching, the load balancer must have the ability to read header content from client requests. A load balancer may use this information to make rewriting and redirection decisions and also use it for implementing security checks. ZEVENET ADC provides the same feature as SSL offloading.

Virtual Services: This section contains listeners that receive external traffic from clients through an IP and Port. The load balancer may use the traffic to perform security checks, load balancing, SSL acceleration, etc. A virtual service is defined as a Farm when using ZEVENET ADC.

High Availability: This idea limits the chances of downtime of a web service by failing over to an identical reductant system that is up. The primary one is a Master node, while the redundant one is a Backup/slave. ZEVENET load balancer uses a Cluster to deploy node pairs necessary for failover.

Reports: The Reports section provides more in-depth analytics about traffic monitoring through an appliance. The ZEVENET Monitoring function implements a similar purpose by providing daily, weekly, monthly, and yearly data through graphs.

Cluster configuration: This section is responsible for traffic management within a local network. ZEVENET load balancer uses the LSLB module for controlling local traffic.

Health check scripts: Health checks play a salient role in monitoring the availability and performance of application servers and the applications themselves. ZEVENET uses Farmguardian to monitor Layer 4 and Layer 7 applications.

System Overview: This interface displays information about resource usages by the appliance, like networking, memory usage, and system load usage. ZEVENET’s dashboard displays real-time data about RAM, CPU, and Network adapters for monitoring inbound and outbound traffic.

Example configurations: GSLB configurations

According to Datareportal, global internet traffic has shown a steady growth with a 4.95 percentage increase in 2021 alone. This accounted for over 192 million users increasing demand for security, reliability and high availability of resources. With more users accessing the web, corporations must build fault tolerant data centers with the ability to perform automatic data center recovery in case one active data center goes down.

The essence of implementing GSLB is to distribute traffic across various data centers located in different geographies. With this design, users experience low latency, increasing the browsing experience since the requests are queried from the closest data center. To learn more about GSLB with ZEVENET, Read this documentation: GSLB | Farms

In this section, we describe GSLB in Loadbalancer.org and how you may design a similar DNS load balancer with ZEVENET ADC.

Loadbalancer.org configurations

  1. On the side menu, click on cluster configuration.
  2. Click on GSLB configurations.
  3. Within the Global Names section, click on the New Global Name button.
  4. Enter the name, Hostname and the TTL value.
  5. Click the submit button.

    6. oracle_jd_edwards_load_balancing_farm

    Add members

  6. Click the Members Tab.
  7. Click the New member button.
  8. Enter the Name and IP of the New Member.
  9. Click the submit button.

    10. oracle_jd_edwards_load_balancing_farm
    For this example, we will create 2 members.

    Add Pools

  10. Click the Pools Tab.
  11. Click the New Pool button.
  12. Enter a Name that identifies the pool.
  13. For SSL traffic, Turn the Field Monitor Use SSL from No to Yes.
  14. Add a global name that you created.
  15. Within the members section, drag and drop From Available members to Enabled members.
  16. Click the submit button.

    17. Add Topology

  17. Click on the Topology Tab.
  18. Click the New Topology button.
  19. Enter a Name that identifies a region.
  20. Enter the IP address in IPV4 format. This will be the load balancer VIP.
  21. Click the submit button.

    22. oracle_jd_edwards_load_balancing_farm

ZEVENET configurations

To configure GSLB configurationsin ZEVENET ADC:

Add a GSLB Farm

  1. On the side menu, click GSLB.
  2. Click the Farms option.
  3. Click the Create Farm button
  4. Enter a Name that identifies a DNS Farm
  5. Select a virtual Ip Address
  6. Enter the Port number 53.
  7. Save the configurations by clicking the Apply button.

    8. oracle_jd_edwards_load_balancing_farm

    Add a service

  8. Click the Services Tab.
  9. Click the New Service button to add a service.
  10. Enter the service Name in the form.
  11. Select any of the load balancing algorithms, whether Priority or Round robin.
  12. Click the Apply button to create a service.
  13. Click the service you just created to open it.
  14. For HTTPS traffic, change the TCP Port to 443.

    15. oracle_jd_edwards_load_balancing_farm

  15. Change health checks for Farmguardians to check_https.
  16. Click the Apply button to save the configurations.

    17. Add the IP addresses of the data centers

  17. Click the Edit button besides the provided IPs.
  18. In the Alias field, leave the field as Custom IP.
  19. Enter the IP address of the Data center you want to send traffic.
  20. Repeat the process from line 17 to add other data centers.

    21. oracle_jd_edwards_load_balancing_farm

    Add DNS zones

  21. Click the Zones tab.
  22. Click the New zone button.
  23. Enter a domain or subdomain you intend to use.
  24. Click on the domain you just created to edit it. The default name server is ns1. This acts as the Start of Authority(SOA), and the Resources section adds more DNS records.
  25. To add a DNS Record for identifying the name servers, click the Create resource button.
  26. Enter a Name that identifies a record.
  27. Add the TTL value in seconds.
  28. Select the Type of the record.
  29. Within the Data field, enter the value for the record.
  30. Click the Apply button to save the configurations.

    31. oracle_jd_edwards_load_balancing_farm

  31. Restart the Farm for the DNS load balancer to work.

For more details about GSLB load balancing, read this guide: GSLB | Farms

You may also watch:

Example configurations: High Availability

High availability offers the capability of a system, network, or service to remain operational and available for use during a given period. In other words, high availability means that a system must be reliable and able to handle a high volume of traffic or requests without experiencing significant downtime.

Overall, high availability is important for ensuring that systems and services are reliable and available when needed, which can help organizations maintain their reputation, protect their data, and continue to operate effectively.

Loadbalancer.org configurations

  1. On the side menu, click cluster configuration.
  2. Click High Availability configuration.
  3. The Local Ip address is the address of the appliance you’re currently using.
  4. Enter the Ip address of new peer. This ip address identifies the remote that has similar configurations as the master node.
  5. Enter the password for load balancer user on peer.
  6. Click the Add new node button.

  7. Wait for a few seconds for the load balancer to configure.
  8. After finishing the configuration, click the Restart Heart button for the configurations to take effect.

ZEVENET configurations

For high Availability configurations in ZEVENET ADC:

  1. Click the System Item on the menu.
  2. Click the Cluster option.
  3. For the Local IP, select the IP address of the local appliance.
  4. Enter the Remote IP address of the slave node.
  5. Enter the Remote node password.
  6. Reenter the remote node password.
  7. Click the Apply button to save the configurations.

  8. At the left side of the Cluster service table, click the Edit Icon.
  9. Within the Cluster settings, change the Failback from default to that of the local node. For Example, if the hostname of the local node is zevenet08, then change the failback to zevenet08.

  10. Click the Apply button to update the changes.

For more details about cluster configurations in ZEVENET ADC, read System | Cluster

You may also watch:

Additional Resources

Using the Let’s encrypt program to autogenerate an SSL certificate.
Datalink/Uplink load balancing With ZEVENET ADC.
Web application protection from DDoS attacks.
Application, Health and Network Monitoring in ZEVENET ADC.

Share on:

Documentation under the terms of the GNU Free Documentation License.

Was this article helpful?

Yes No

Related Articles