ServerIron ADX | Brocade Communications Systems 12.4.00 instruction

53-1002437-01	®
January 2012

ServerIron ADX

Global Server Load Balancing Guide

Supporting Brocade ServerIron ADX version 12.4.00

Image 1

Brocade Communications Systems 12.4.00 manual ServerIron ADX

Contents

ServerIron ADX Brocade Communications Systems, Incorporated Contents ServerIron ADX Global Server Load Balancing Guide Page Global server load balancing for IPv6 overview Gslb for IPv6 feature supportGslb for IPv6 example IPv6 IPv4Page Supported hardware and software AudienceDocument conventions Text formatting Bold text Web access Getting technical help or reporting errorsMail and telephone access Related publicationsPage Global Server Load Balancing overview Global Server Load Balancing Basic concepts Global Server Load Balancing overview Gslb example Global Server Load Balancing configuration DNS Gslb policy Server health Weighted IP metric Site ServerIron ADX’s session capacity threshold Weighted site metricActive bindings metric Geographic location of the server Site ServerIron ADX’s available session capacity tolerance Site ServerIron ADX’s connection loadSite ServerIron ADX’s FlashBack speed Least response selection Site ServerIron ADX’s administrative preferenceRound robin selection 128 Basic controller and site communication Minimum required configuration Syntax show gslb policy Configuring Gslb Configuring GslbPage Adding a source IP address Proxy for DNS serverProxy for DNS server Syntax no server source-ipip-addr ip-mask default-gateway Enabling the Gslb protocol Configuring a siteSyntax no gslb protocol Syntax no gslb site name Specifying site locations Specifying Gslb controller locations Configuring a zoneSyntax no gslb dns zone-name name Syntax no dns cname-detect Applying Gslb to Cname records Cname status is shown in bold type Configuring Http health check parameters Configuring DNS domain name aliases Configuration example Configuring null host namesSyntax host-info host-namealias alias-name Syntax dns override Private VIPs for Gslb Private VIPs for Gslb Configuring a public IP address for a VIP Displaying Gslb IP information Private VIP display informationShow gslb dns detail the following is an example Changing the protocol port number Configuring Gslb protocol parametersSyntax show server virtual-name-or-ip Syntax show gslb site Modifying Gslb parameters related to DNS responses Changing the Gslb protocol update periodSyntax no protocol status-interval num You can modify the following DNS-related Gslb parameters Syntax no dns best-only Removing IP addresses for sites that fail a health check Syntax no dns check-interval num Changing the query intervalChanging the TTL for DNS records Syntax no dns ttl num Syntax no dns override Syntax no dns ttl Enabling DNS override Changing the Gslb policy metrics Metric Default Configuration options Configuring Gslb protocol parameters Gslb policy metrics Connection load Syntax no metric-order set list Changing the order of Gslb policy metrics Disabling or re-enabling individual Gslb policy metrics Syntax metric-order default Syntax clear gslb dns zone-name name Clearing DNS selection counters DNS response processing Implementing the weighted IP metric Syntax no weighted-ip Syntax no gslb dns zone name Configuring weighted IP metricsSyntax host-info www ip-weight IP address weight For name, enter up to 32 characters Syntax show gslb dns zone Implementing the weighted site metric San Jose 50% New York 30% London 20% Total 100 100% Configuring weighted site metrics Traffic distribution specificationsSyntax no weighted-site Syntax gslb site site name Syntax weight weight Syntax show gslb traffic site First example shows the first two sites Site Three Implementing the active bindings metric Enabling active bindings Gslb active bindings enhancements Configuring weighted active bindings Specifying the site connection limit Configuring connection load parameters Changing the sampling intervals and sample rate Syntax no connection-load limit average-load Syntax no connection-load weights weight1 weight2...weight8 Changing the sample interval weight Syntax no capacity threshold num Changing the FlashBack tolerance valuesSyntax no num-session tolerance num Syntax no flashback application tcp tolerance num Changing the RTT cache interval Modifying round-trip time values Changing the RTT cache prefix Syntax no round-trip-time cache-interval numSyntax no round-trip-time cache-prefix num Changing the RTT tolerance Adding static prefix cache entries Syntax no round-trip-time explore-percentage num Secure Gslb Enabling default geographic locationPage Configuring secure Gslb Gslb message content randomizationRSA challenge dialogue Secure Gslb Generating RSA key pair Configuring secure-communication on the controller Exchanging public keys Bob sends back his public key C.D Selecting a peer public key management option Manually regenerating the session keys Regenerating the session keysDynamically regenerating the session keys Syntax clear gslb session-keys Minimum Gslb configuration Site persistence in Gslb using stickiness Algorithm Enabling sticky Gslb Site persistence in Gslb using stickiness Allowing sticky sessions for a specific prefix length Configuring the sticky Gslb session life timeSyntax no sticky Syntax no sticky age value Syntax show session all offset Displaying current sticky Gslb sessions Syntax show gslb dns detail Sticky Gslb counters Deleting sticky Gslb session for a specific client Site persistence in Gslb using hashingDeleting all sticky Gslb sessions Enabling hash-based Gslb persistence Syntax show gslb phash table Hashing scheme IP address failure or removal from domain IP address allocationRehash new IP address for a domain or change of state Rank Disabling rehash Manually forcing rehash for a domain Syntax hash-persist persist-rehash-disable time-outSyntax hash-persist hold-down time Show commands Weighted distribution of sites with hash-based persistence Weighted distribution of sites with hash-based persistenceSyntax show gslb phash table zone-name name host-name name This section contains the following subsections Gslb hash-based persistence Gslb weighted hash-based persistenceHashing scheme IP address allocation IP address failure or removal from domain Disabling rehash on change in hash weight configuration Rehash change in hash weight Syntax no hash-persist weighted Enabling weighted hash-based Gslb persistenceSyntax no prefix-len-hash-persist length Disable rehash when weight for an IP is changed Configuring weights for domain IP addressesSyntax host-info host-nameip-hash-weight IPaddress weight Syntax no hash-persist disable-weight-rehash Hash persist hold down timer Manually forcing rehash for a domain Show commandsClear Gslb phash counters Syntax show gslb policy host-policy-name policy-name Displaying the contents of active RTT cache entries Affinity Affinity Syntax gslb affinity Defining the affinity Syntax show gslb cache ip-addr Displaying RTT prefix cache entries Displaying affinity selection counters Gslb domain-level affinityOverview of Gslb domain-level affinity Syntax show gslb dns detail name Configuring an affinity for prefix 0.0.0.0/0 Command line interfaceCreating a domain-level affinity group Associating the domain-level group with a domain Syntax show gslb affinity-group group-number Show gslb affinity-group group-numberShow gslb resources Syntax show gslb resources DNS cache proxy DNS cache proxyShow gslb dns detail Syntax show gslb dns detail zone-name Enabling DNS cache proxy To enable DNS cache proxy, enter the following commandsDisplaying DNS cache proxy state Syntax no dns cache-proxy Displaying DNS cache proxy statistics DNS cache proxy Disable the defaultSyntax show gslb global-stat Gslb DNS type any query Combining the DNS cache proxy and DNS override features Transparent DNS query intercept Transparent DNS query intercept configuration Transparent DNS query intercept Redirecting queries Syntax no source-nat Syntax no server remote-name name ip-addrSyntax no port dns Syntax no server virtual-name-or-ip name ip-addrintercept Syntax no bind dns real-server-namedns Redirecting queries and perform GslbSyntax ip policy index cache udp dns global Responding to queries directly Syntax dns transparent-intercept Displaying transparent DNS query intercept statistics Syntax no gslb log-dns Enabling DNS request loggingEach message shows the following information Enabling DNS request logging Gslb request information Support for the RTT metric BP support as Gslb agent Distributed health checks for GslbEnabling DNS request logging ADX Syntax no si-name name ip-addrno-si-dist-health-check Syntax no si-name name ip-addrenable-si-dist-health-check Configuring the health status reporting intervalDisabling or re-enabling distributed health check Syntax no no-distributed-health-check Debugging the distributed health check Configuring the agent health report intervalSyntax no health-status-interval secs Syntax no agent-health-report-interval secs Impact of distributed health checks on the Flashback metric Topology Configuration examplesExample Example Example Steps involved in a Dnssec resolution are Dnssec Example with Authentication Chain Dnssec Verification with DIG Dnssec Gslb in DNS proxy mode Cache proxy mode Configuring Dnssec for GslbConfiguring a zone for Dnssec Configuring a backend Adns server as Dnnsec capable Displaying Dnssec statistics Displaying Dnssec configurationSyntax no port dns use-dnssec-servers-for-dns-queries Syntax no server use-dnssec-servers-for-dns-queries Host-level policies for site selection Configuring host-level policiesGlobal vs host-level policy Host-level policies for site selection Defining a name for a host-level Gslb policy Configuring the parameters for the host-level policy Removing all IP addresses except the best address Syntax no dns active-only Disabling or re-enabling the Flashback metric To re-enable this metric, enter the following commandSyntax no flashback Modifying Flashback tolerance Syntax no geographic Enabling the Geographic metricEnabling the Health Check metric Syntax no health-check Resetting the order of the metrics Enabling the Num-session metric Configuring the Num-session ToleranceSyntax no num-session Enabling the Preference metric Enabling the weighted site metric Syntax no weighted-ipSyntax no round-robin Enabling the Round-Trip-Time metric Syntax no round-trip-time Changing the RTT tolerance Displaying host-level policy information Syntax no weighted-siteApplying a host-level policy to a Gslb host Displaying a host-level policy Syntax show gslb policy host-policy-all Displaying all Gslb policies Displaying the number of host-level policies Displaying the policy used for hostsSyntax show gslb dns zone I detail Deleting Gslb host-level policies Configuration exampleDeleting a policy that is not applied to a host Syntax clear gslb host-policy policy-name How geographic location is determined Geographic region for a prefix For IPv4 Configuring a geographic prefixFor IPv6 Displaying information about geographic prefix Displaying the number of geographic prefixesGeographic region for a prefix Syntax show gslb cache IP address prefix Syntax show gslb cache all geographic user-configured Example configuration Smoothing mechanism for RTT measurements Smoothing mechanism for RTT measurements90% of 20ms + 10% of 40ms = 22ms 90% of 22ms + 10% of 1 sec = 119ms 134 Syntax gslb enhanced-rtt-smoothing Enabling enhanced RTT smoothing Disabling enhanced RTT smoothing Configuring the parameters Syntax no ramp-up-factor value Specifying the ramp-up-factorSpecifying the ramp-down factor Syntax no ramp-down-factor value Syntax disable-sim-new-rtt-smooth Syntax enable-sim-new-rtt-smoothState gets cleared. You can command in the simulation Syntax rtt-val value Smoothing mechanism for RTT measurements Smoothing mechanism for RTT measurements Round-trip times Determining if the new RTT smoothing mechanism is enabledPassive RTT gathering Round-trip times Passive RTT gathering Active RTT gathering Active RTT gathering Support for both active and passive RTT Enabling active RTT Active RTT gathering issues and trade-offs Discarding passive RTT Syntax no gslb disable-rtt-gatheringDisabling passive RTT gathering Syntax no gslb active-rtt-gathering Configuring active RTT query message interval Configuring active RTT parametersConfiguring the cache interval for active RTT prefix Specifying how often to report the active RTT Setting the RTT algorithm modes Configuring the active RTT refresh intervalSyntax no gslb agent-rtt-refresh-interval value Using only passive RTT Syntax gslb dns-probe disable-fallback Syntax gslb dns-probe enable-fallbackProbes for RTT gathering Accepting DNS RTT measurements Aging out prefixes when DNS probe fails Aging out prefixes when Icmp probe failsEnabling the DNS prober Sending DNS probes on a different port Active RTT gathering and high availability support Displaying the RTT gathering mechanism Displaying RTT information Syntax show gslb active-rtt-info Displaying the active RTT gathering configuration Round-trip times Show Gslb active RTT information Displaying the RTT information of a client IP addressSyntax show gslb cache ip-address This field Displays For example, enter a command such as the following Displaying the RTT algorithm mode Gslb affinity for high availability Configuring an HA groupGslb affinity for high availability Enabling dynamic detection Displaying all HA groups Displaying HA informationDisplaying the HA peer for a site Syntax no gslb dynamic-peer-detect Displaying the dynamically detected HA pairs Gslb affinity for HA View the configured HA group using the following command Gslb optimization This command requires a reload to take effectOptimized VIP list processing Syntax no gslb process-vip-list-optimize Syntax no gslb send-vip-list-optimize Syntax no si ip-addressoptimized-dist-hcheckSyntax no gslb dont-send-active-bindings Gslb optimization On the site ServerIron ADX, configure the following commands Displaying Gslb information Guidelines and recommendations for using this featureDisplaying site information Displaying Gslb information Name parameter specifies a site name Syntax show gslb site name Site Displaying Gslb information Global SLB site information Displaying real server information Syntax rshow remote-ip-addrserver real virtual session bind Syntax show gslb dns zone name Displaying DNS zone and hosts Zone Displaying detailed DNS information Host a Flashback Displaying metric information Syntax show gslb default Displaying the default Gslb policy DNS TTL Displaying Gslb information Gslb policy information Displaying the user-configured Gslb policy ServerIronADXconfig# show gslb cache Static prefix cache entries on Displaying Gslb resources This command shows the following information Gslb resources Displaying Gslb information Gslb resources Displaying dynamic server informationPort binding information The TCP and UDP ports Session statistics Another way to list the real servers Displaying virtual server information Displaying dynamic real server informationSyntax show server dynamic real Listing the real servers Displaying the port bindingsSyntax show server dynamic virtual Syntax show server dynamic bind Displaying information in the prefix cache Specifying the source IP of probesSyntax gslb src-ip-active-rtt ip-address Syntax show gslb cache all Syntax show gslb cache all geographic static Syntax show gslb cache all affinitySyntax show gslb cache all ip-addr Syntax show gslb cache ip-addrlonger-than prefix-length Snmp traps and syslog messages Snmp traps and syslog messagesSyntax show gslb cache ip-addrsmaller-than prefix-length Syntax show logging Syslog messages Syntax no snmp-server enable traps trap-type Gslb error handling for unsupported DNS requestsDisabling and re-enabling traps Using Gslb error handling with transparent intercept mode Default settings for Gslb error handling Disable or re-enabling Gslb error handling Error handling response formatConfiguring the return code Gslb error handling for unsupported DNS requests Clearing the error handling statistics Viewing error handling statisticsSyntax clear gslb unsupported-response-cnt Gslb error handling for unsupported DNS requests Global server load balancing for IPv6 overview Global Server Load Balancing for IPv6 Gslb for IPv6 feature support Gslb for IPv6 example IPv6 Gslb configuration On Gslb ServerIron ADX controller Basic Gslb for IPv6 configuration Basic Gslb for IPv6 configuration Configuring the Gslb controllerAdding a VIP for the Adns server Enabling DNS cache proxy Enabling DNS override Configuring zones Syntax no host-info host-nameip-list ipv6-address Specifying DNS override IP listsHost-nameparameter specifies the host name Configuring sites Basic configuration example Site ServerIron ADX configurationConfiguration on Gslb ServerIron ADX Gslb controller Enabling the Gslb protocol Enable the Gslb protocol on each of the Site ServerIron ADXs Configuration on site ServerIron ADXs Gslb site persistence Advanced Gslb configuration for IPv6 Refer to Server host health Configuring Gslb policy metrics for IPv6 Not supported Refer to FlashBack speed metric Changing the order of Gslb for IPv6 policy metrics Syntax no metric-order set list Server host health metric Resetting Gslb policy metrics Enabling the weighted IP metric Weighted IP metric Advanced Gslb configuration for IPv6 Specifying the weight of IP addresses in the IP listFor zone-name, enter up to 32 characters Weighted site metric DNS response processing Traffic distribution specifications Session capacity threshold metric Configuring weighted site metrics Enabling active bindings Active bindings metricSyntax no active-bindings Configuring weighted active bindings Geographic location metric Specifying site locations Configuring a geographic prefixSpecifying Gslb controller locations Available session capacity metric FlashBack speed metric Administrative preference metric Least response selection metric Configuring administrative preference for a siteRound robin selection metric Sticky persistence for IPv6 Enabling sticky persistence for IPv6 Specifying sticky session life times Specifying sticky session prefix lengthsDeleting sticky sessions Syntax no sticky ipv6-prefix-length decimal Specifying hash-based persistence prefix lengths Hash-based persistence for IPv6 Manually forcing a rehash for a domain Weighted hash-based persistence for IPv6Syntax no ipv6-prefix-len-hash-persist decimal Configuring weights for domain IP addresses Disabling rehash when weight for an IP is changed Configuring an active-only policy Configuring DNS response parameters Gslb of ANY queries Configuring a best-only policy Show commands for basic Gslb configurations Displaying Gslb for IPv6 configurationsDisplaying DNS cache proxy statistics Displaying Gslb for IPv6 configurations Displaying the default Gslb policy DNS TTL Displaying the user-configured Gslb policy Displaying information about a geographic prefix ServerIronADX VIP === Displaying DNS zone and hosts When you configured the zone information Africa X100us Counters 2001db8abc Cfg Zone-nameparameter specifies a particular Gslb zone Displaying site information Specifying the weight of IP addresses in the IP list on ServerIronADXconfig# show gslb site Administrative preference metric on Displaying the hash table Show commands for advanced featuresSite-nameparameter specifies a site name Clearing Gslb phash counters Troubleshooting Gslb for IPv6 configurationsDisplaying Gslb debug counters Syntax show gslb ipv6 phash active-ip allocation table Troubleshooting Gslb for IPv6 configurations Debug trace for Gslb Troubleshooting IPv6 listsSyntax show gslb message IPaddress Syntax debug track feature gslb algorithm sticky generic all Troubleshooting Gslb for IPv6 configurations IPv6 IPv4IPv4 RFC DNS South America Address Designation IPv6 address assignment Lacnic