1. Elastic Load Balancing (ELB)AWS Black Belt Tech Webinar 2014 () 2014.5.07 2014.10.20

2. ELB Updates 2014.7 2014.4 CloudTrail 2014.3 2014.3 S3 2014.2 SSLPerfect Forward Secrecy(PFS)Server Order PreferenceELBSecurityPolicy-2014-01 2013.11 2013.10 CloudWatchBackendConnectionErrorSurgeQueueLengthSpilloverCount 2013.7 Proxy Protocol 2013.5 HTTP 2013.5 Route 53 2012.6 Internal ELB 3. Agenda ELB ELB ELB ELBTips 4. ELB 5. Elaastic Load Balancing (ELB) AWS ELB : EC2 : EC2EC2ELB : ELB : : : Auto Scaling, Route 53, Cloud Formation 6. ELB aELBEC2EC2 bmyLB-xxx.elb.amazonaws.com 7. EC2L7 HTTP, HTTPSL4 TCP, SSL 8. (AZ)21) DNSAZELB2) EC2myLB-xxx.elb.amazonaws.comAZ - aELBAZ - bDNS 9. ELB Ping HTTP (200 Ping 80 PingHTTP/S/index.html 20 30 4 2 10. ELBELB[]ELBIPELBDNSCNAME 11. 2GB 100GB1GB49GB49GB98GB20141020 AZ SSL ELB 1GB 12. ELB 13. ELB ELBTips IP AZ ELB SSL S3 ELB VPC ELBSecurity Group 14. CNAME DNSwww.example.com CNAME myLB-xxxx.ap-northeast-1.elb.amazonaws.com Zone Apex (www.exapmple.com example.com ) DNSCNAME Route 53 15. IPIPELBIP ELB, ELB ELBIP HTTP/HTTPSHTTPX-Forwarded-For - IP- IP X-Forwarded-For: 203.0.113.7, 10.12.33.44, 10.12.23.88Client IP address 16. AZAZ2AZ-b3New 2013.11AZ-a50%50%50%50%2AZ-a3AZ-b AZ Route 53 EC2 AZEC2 AZ 17. ELB ELB ELB EC2 EC2ApacheHTTP Keepalive WebELBELBEC2 60160 ELBELB EC2 New 2014.7 18. ELBELB ELBELBHTTP 503 TV ELB Pre-Warming Business/Enterprise 19. VPC ELBAZ1 /27 CIDR20IP EC2 ClassicIPv6 (20144)myLB-xxx.elb.amazonaws.comAZ - aAZ - bELB Web 20. Internet-Facing ELB / Internal ELB Internet-Facing ELBELB IP Internal ELBVPCELB IPInternet-Facing ELBWebInternal ELBAP 21. ELBSecurity Group EC2 ClassicSecurity Groupamazon-elb/amazon-elb-sgVPCELBSecurity Group ICMP Echo Request/ReplyELBping EC2ELB443sg-EC280: sg-ELB22:10.0.0.0/24808080sg-ELB80443: 0.0.0.0/022 22. ELB ELBTips IP AZ ELB SSL S3 ELB VPC ELBSecurity Group 23. SSLELBSSL Terminationa) ELBSSL TerminationSSLEC2SSLb) ELBSSL TerminationSSLc) SSLTCPTCPa) HTTPS HTTPb) HTTPS/ SSL HTTPS / SSLc) TCP TCP 24. HTTPS/SSLELB HTTPS/SSL ELBSNI SSL or CLI or IAM APISSL/ 25. SSL TLS 1.1, 1.2 Perfect Forward Secrecy (PFS) New 2014.2 Server Order PreferenceNew 2014.2 New 2014.2ELBELBSecurity-Policy-2014-01 ELB ELBSecurity-Policy-2014-01 26. ELBEC2HTTPS/SSL 27. ELB ELBTips IP AZ ELB SSL S3 ELB VPC ELBSecurity Group 28. (stickness)EC2 EC2 HTTP/HTTPS ELBCookieEC2DB 29. Application Generated Cookie StickinessCookie Cookie Cookie Load Balancer Generated Cookie StickinessELB 30. ELB ELBTips IP AZ ELB SSL S3 ELB VPC ELBSecurity Group 31. (Connection Draining)New 2014.3EC2ELB ELB 300 3600 Management Console API/SDK/CLI2014.5 32. AWS CLI$ aws elb describe-instance-health --load-balancer-name (ELB Name){"InstanceStates": [{"InstanceId": "i-XXXXXXXX","ReasonCode": "N/A","State": "InService","Description": N/A}]}State Description InService N/AInService Instance deregistration currently in progress. orOutOfService Instance is not currently registered with theLoadBalancer. 33. ELB ELBTips IP AZ ELB SSL S3 ELB VPC ELBSecurity Group 34. S3New 2014.3ELBS3 S3 ELB ELB ELB IP Apache/NginxELB 2014.10 35. ELB 36. CloudWatchCloudWatchELB1 (HealthyHostCount) (UnHealthyHostCount) (RequestCount) (Lantency) ELB4xx,5xx (HTTPCode_ELB_4xx) 2xx,3xx,4xx,5xx (HTTPCode_Backend_2xxx) (BackendConnectionError)New 2013.10 (SurgeQueueLength)New 2013.10 (SpilloverCount)New 2013.1013 37. Auto Scaling Auto ScalingELB ELBAuto Scaling ELBEC2XAuto scaling GroupNew 2014.3 38. Route 53 DNSRoute 53ELBSorryS3 Bucket3. ELBEC22. AppELB1. DB4. 5. Sorry 39. OpsWorksELBOpsWorksELBLBUserAWS ManagementConsoleLoad BalancerApp ServerDatabaseDBWeb/AppWeb/AppLB LBELB 40. ELBTips 41. ELBELB ELB ELB Sticky 42. ELB Apache Bench(ab) curl-loader (DNS) FabricBeesWithMachineGuns 43. ELBEC2 44. ELB HTTP 503 ELB Pre-Warming 550% DNS 11DNS Cookie 60ELB 45. 46. ELBAWS Pre-Warming 47. Elastic Load Balancinghttp://docs.aws.amazon.com/ja_jp/ElasticLoadBalancing/latest/DeveloperGuide/Welcome.html Elasitc Load Balancinghttp://d36cz9buwru1tt.cloudfront.net/jp/documentation/BestPracticesInEvaluatingELB-ja-final.pdf Amazon ELB FAQhttp://aws.amazon.com/jp/ec2/faqs/ ELB 48. Amazon Elastic Load Balancing Developer Guidehttp://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/Welcome.html Best Practices in Evaluating Elastic Load Balancinghttp://aws.amazon.com/articles/1636185810492479 Amazon ELB FAQhttp://aws.amazon.com/ec2/faqs/ELB AWS CLI ELBhttp://docs.aws.amazon.com/cli/latest/reference/elb/ [AWS re:Invent 2012] CPN 205: Zero to Millions of Requestshttps://www.youtube.com/watch?v=xKF-Aawz9oc 49. Appendix 50. ELB 2036020 20 20ELBEC2 51. ELB 2048020 20 20420EC2runningterminate EC2terminateELBEC2 ELBterminateEC2 de-registerterminate 52. Default VPC/Internal ELB20141020EC2-Classic EC2-VPCInternet-facingELBInternalELBInternet-facingELBInternalELBIPv6DedicatedInstanceSecurityGroupInternetGatewayELBSubnetDefault VPCDefault VPC 53. ELBELBELB IAM / 54. ELBS3Route 53 (1/3)1) ELBELB, S3IPAliasYesAlias TargetELB, S3ELB 55. ELBS3Route 53 (2/3)2) Routing PolicyFailoverActive / StandbyPrimaryFailoverYesELBRoute53No 56. ELBS3Route 53 (3/3)3) 2NameS3SecondaryActive / StandbySecondary