Documentos de Académico
Documentos de Profesional
Documentos de Cultura
(GSLB) Concepts
Section
A10
Networks, Inc.
Section Objectives
GSLB Overview
GSLB Configuration Options
GSLB Components
Server Mode Configuration
A10
Networks, Inc.
A10
Networks, Inc.
Networks, Inc.
Server mode
The ACOS device directly responds to queries for specific service IP addresses in the GSLB zone. In server
mode, the ACOS device can reply with A, AAAA, MX, NS, PTR, SRV and SOA records. For all other records, the
ACOS device will attempt proxy mode unless configured as fully authoritative.
A10
Networks, Inc.
Disadvantages
Requires changes to DNS server configuration
Add Sub-domain to existing DNS for ACOS
Add ACOS proxy ip as NS records
Add ACOS proxy ip as A records
CNAME existing records to sub-domain
A10
Networks, Inc.
Disadvantages
Requires changes to DNS server IP address, or change in registered NS server IP address
Can not be implemented without downtime
Customer has to own and run their own DNS servers
A10
Networks, Inc.
GSLB Components
Controller
Sites
Policy
Configurable parameters evaluated against a
client request to select the best site to send
the request to
Zones
A DNS domain for GSLB. A device can be
configured with one or more GSLB zones.
Each zone can contain one or more GSLB
sites. xyz.com is a domain.
A10
Services
An application such as HTTP or FTP. Each
zone can be configured with one or more
services. www.xyz.com is a service where
www is the http service or an application
in the xyz.com zone
Service IP
The virtual servers defined under service-ip
are used for GSLB
Networks, Inc.
Note To configure Proxy mode, follow standard SLB procedures (Servers, Service
Groups, VIP, etc.) that utilize external DNS servers and enable it for GSLB when
configuring the virtual port
Note 2 GSLB Policies will be covered in another module
A10
Networks, Inc.
To configure Proxy Mode, create Servers for the actual (external) DNS servers, place
them in a Service Group and apply to the Virtual Port
A10
Networks, Inc.
10
The Service IP can also have health checks assigned and, if needed, an External IP
allowing a service IP that has an internal IP address to be reached from outside the
internal network
A10
Networks, Inc.
11
A10
Networks, Inc.
12
In the above example, the zone name is a10class.com, the service is HTTP with the
name www. Clients would then query www.a10class.com when connecting to the VIP
A10
Networks, Inc.
13
At the Service level of the configuration, additional dns records such as C-NAME, mx,
and NS can be created
A10
Networks, Inc.
14
The GSLB controller collects following information from the site AX load balancers
Virtual IP addresses & active servers
aRDT (active-Round Delay Time)
Site session capacity statistics
Connection load
Number of active sessions
Networks, Inc.
15
For redundancy, multiple controllers can be enabled and placed in a controller group
which can automatically synchronize GSLB configurations and service IP status among
multiple GSLB controllers for a GSLB zone
Enabling the protocol on devices in other sites in the GSLB configuration is optional, but
is required for in order to take advantage of certain policy options and default health
checks. A10 recommends enabling the GSLB protocol on all devices
gslb protocol enable device
Note - For more information on Controller Groups see the GSLB configuration guide
A10
Networks, Inc.
16
A10
Networks, Inc.
17
GSLB Policy
Section
A10
Networks, Inc.
Section Objectives
Policy Overview
Policy Metrics
Policy Settings
Policy Configuration
A10
Networks, Inc.
GSLB Policy
A list of metrics used to determine the best site to use for a given clients request
Health Check, Round Robin and Geographic enabled by default but can be disabled
All other metrics must be enabled to be used
Applied to the zone or service level within a zone
Features a Default policy which is used for all GSLB zones and services unless an
Admin created policy is applied to a zone or service
A10
Networks, Inc.
A10
Networks, Inc.
Geographic (7)
Services located within the clients
geographic region are preferred *
Active-Servers (5)
Sites with most currently active servers are
preferred
Weighted-IP (2)
Service IP with higher assigned weight are
used more often than the service-IP with
lower weights
A10
BW-Cost (11)
Num-Session (9)
Sites that are not exceeding available session
capacity threshold compared to other sites
are treated as having the same preference
Admin-IP (13)
IP addresses are preferred based on
administratively assigned weight
A10
Networks, Inc.
Policy Configuration
To create a Policy use the following
gslb policy [name]
Once in the policys context, enable and configure policy entries. Some metrics are
enabled by entering the name of the metric
(config-gslb policy)#least-response
Other metrics are first configured at the site or zone level and then enabled by adding
them to the policy
(config-gslb site-slb dev)#admin-preference ?
<0-255>
In the above example, a priority is set at the device level of a site, the metric will then be
evaluated once enabled on the policy
(config-gslb policy)#admin-preference
A10
Networks, Inc.
Using the above example, least-response and admin-preference are now 1 and 2 in the
evaluation order. Heath-check, being the previous number 1 drops to 3
#show gslb policy pol1
-----------------------------------least-response
| 1 |
| yes
admin-preference | 2 |
| yes
health-check
| yes
| 3 |
A10
Networks, Inc.
Dragging metrics to the left will automatically enable them. Once enabled, these metrics
can also be dragged up or down to put them in desired order.
A10
Networks, Inc.
A10
Networks, Inc.
10
To apply at Service level, from the Zone page, select the service name and click edit.
Choose policy from the dropdown.
A10
Networks, Inc.
11
A10
Networks, Inc.
12