Re: Load Balancing Tomcat 5.0.X, hardware or software?

[Dwayne <dw...@gmail.com>]

My vote goes to appliance, but Filip is completely correct, this is a budget
based decision.

The higher up in your architecture you deal with SSL the better in my
experience.  (especially in stateless farms)

I would look into L2 caching (like EHCache + Hibernate or Terracotta) if you
decide to build a LB yourself.

Good luck

Dwayne


On 8/31/07, Filip Hanik - Dev Lists <de...@hanik.com> wrote:
>
> bajistaman wrote:
> > And what about SSL?,
> it sure makes life easier to have the LB take care of it, and if you
> look at it from a signed certificate licensing standpoint, cheaper.
> verisign and the other dudes, like to charge for "per-box" you wish to
> install the cert on.
> >  it is better to let the load balancer to take care of it
> > or every node in the farm?
> >
> > Thanks,
> >
> > Johann
> >
>
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>

Re: Load Balancing Tomcat 5.0.X, hardware or software?

[Filip Hanik - Dev Lists <de...@hanik.com>]

bajistaman wrote:
> Many Thanks for your comments, I have everything working now using a HW load
> balancer but the ssl is being managed by every node just because the guys
> from networks think that we need to upgrade the current HW Load Balancer to
> be able to support it and that is not going to happen soon.
>   
The caveat with that solution is that now you are doing TCP session load 
balancing, not HTTP load balancing.
When the traffic flows in SSL through the LB, it prevents the LB to make 
load balancing decisions based on the HTTP protocol.

And to do stickyness with TCP load balancing, you don't have much 
information except the SRC and DEST IP addresses to go by.(and the 
session itself, which is not relevant when it comes to HTTP since it is 
stateless)

Filip

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: Load Balancing Tomcat 5.0.X, hardware or software?

[bajistaman <ba...@gmail.com>]

Many Thanks for your comments, I have everything working now using a HW load
balancer but the ssl is being managed by every node just because the guys
from networks think that we need to upgrade the current HW Load Balancer to
be able to support it and that is not going to happen soon.

Johann
-- 
View this message in context: http://www.nabble.com/Load-Balancing-Tomcat-5.0.X%2C-hardware-or-software--tf4354748.html#a12460977
Sent from the Tomcat - User mailing list archive at Nabble.com.


---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org