Azure Load Balancer Deep Dive
Вставка
- Опубліковано 17 лип 2020
- Whiteboard and demo deep dive into the Azure Load Balancer! Hope you find it useful and have a drink handy :-D
Whiteboard - github.com/johnthebrit/Random...
Few links used:
- SKUs - docs.microsoft.com/en-us/azur...
- Limits - Aka.ms/lblimits
- SNAT Ports - docs.microsoft.com/en-us/azur... - Наука та технологія
![ПОЛНАЯ ИСТОРИЯ ЭКЗОРЦИЗМА [Топ Сикрет]](http://i.ytimg.com/vi/qBySr6Bt0B8/mqdefault.jpg)
![ПОЛНАЯ ИСТОРИЯ ЭКЗОРЦИЗМА [Топ Сикрет]](/img/tr.png)
Probably the best Azure content on UA-cam right now. Thank you for the time and effort you put into creating these.
Very kind, thanks!
John has the best Azure content on UA-cam. Watching this to train for AZ-700 right now
That Pamela reference really cracked me up 😂
Thanks man. I keep coming back to your vidoes - because the others just simply don't explain it like you do. Your reiterations I don't skip because you are drilling the info into my head repeatedly. Keep up the good work and I really appreciate all the hard work you've been putting into this.
That is very kind, thank you!
Fantastic effort John. You're a great teacher! Looking forward to a Deep Dive on Application Gateway and Traffic Manager!
Brilliant videos making complex subjects seem much more manageable and understanding what's actually going is is very interesting, Thanks!
I’m preparing myself for the AZ-104 certification and this video has been very helpful to me, actually I’m gonna watch it again when I get a chance. Great content please keep sharing!
Thanks, good luck!
Just passed my AZ-104 exam and this is all thanks to your videos, I am starting my DevOps journey and looking forward to your videos once more
Fantastic!
Respected Sir ! I have watched almost all videos on internet on Load Balancer but I have not found this UNIQUE information. I have also gone thru Documentation too, but found it very complicated. After watching your video, It has instilled a clear understanding of this in my mind , even in sleep, I can now explain to others as well.
Thank you very Much Sir. Really appreciated sir.
That is very kind and appreciated, thank you! Please share !
Recently discovered your channel ....it's a gold mine of information..thanks !
Happy to hear that! Thanks!
Bravo....Very beautifully explained. A big thank you
John, again an excellent deep drive! Although most topics were familiar to me, I have again learned a lot. Thanks!
Thanks
Thank you! This is the only material i found so far that helped me to understand how exactly Floating IP works.
You are welcome!
Best content I saw about Load Balancer. Thank you, man.
I appreciate that!
Thanks John - great video explained in a simple way
Best video; hands down. John: Thank you very much
best explanation, stuff is best for interview discussions
Thanks, John
this video is phenomenal, it's so useful for a newly onboard member of microsoft like me!!!! so useful and indepth explanation of SLB logic!!!
Glad it’s useful! Best of luck 🤙
@John Savill, you really know this topic. Very well presented and explained. thanks!
I appreciate that! Thank you!
thank you john, love all your videos!
Awesome illustration, thanks a lot John :)
Awesome video, thank you very much. I'm waiting for video about app gateway and front door now :)
It's good to know how those services work behind the scenes, very useful knowledge.
Thanks!
John - I discovered your channel recently and I love the way you explain concepts in simple and effective way. Do you have a blog where people can post questions?
No, I keep an eye on comments related to the video topic and if have time will help there. I don’t really have enough spare time to do a lot of q&a though with job, family and creating content :)
Hey John! First of all, thank you! keep up this great work, your content is one of the best one! do you also plan to make a deep dive on application gateway?
Thanks and maybe :)
I agree with Devlin. Best Azure content. Good Job and many thanks to you for educating us.
Thank you
My head is in the cloud after this session 🔥
watch this awesome video today, really enjoy its usefulness! Thank you.
brill John. only the best explanation amongst several i have seen: think you could wrap up a final 2 minutes with the creation of the load balancer in azure at the end of the video/start
As the video discussed there are many capabilities and I don’t see what walking through creating one in 2 minutes would really add. There are lots of documents that walk through creation, my goal was to explain capabilities that would help you decide if it’s a fit and what configuration. If you want to see a demo I create and show config in the aks network deep dive.
One more great video, John! If you don't mind, I'd like to ask you for a video about monitoring azure (all aspects of monitoring, best practices...) if you are not already making this video for your MasterClass playlist. Thanks!!
it will be part of the master class ;-)
with great clarity and awesome content, @John request you to prioritize AppGW in-depth video :) thank you so much for sharing
Just found and following ur channel, always trying to start from the beginning. It's worth to see the big video.
Please Do Not Throw Sausage Pizza Away 😋
lol
Thanks so much John
you gave a very good explanation. thanks for such video, please bring more on Az -104......
About to release azure masterclass here which will help with the admin. Thanks
@@NTFAQGuy is app service having zone redundant feature inside region?
Great content as always!
Glad you enjoyed it
A friend referred me your channel. Lucky me❤️
Welcome!!
Very usefully video! Thank you!
Glad it was helpful!
Hi John. Good content. Are you familiar with Google's Maglev load balancer architecture? The description of Azure's Load Balancer that you present in this video looks surprisingly similar to Maglev's. Any comment on that?
I am not aware, sorry.
Lmao my buddy has his book, I thought he looked familiar. Never thought he was this jacked irl tho 😳. Great content in both book/video.
haha, thanks. camera adds 10 lbs
the way you explain how it works behind the scene is just phenomenal !!!
Please do more in depth vid for network products such as setting up NVA (hub spoke) or in vWAN, etc
There is already a video on NVA. Please check out the channel.
@@NTFAQGuy Yup found it!
I see you did ATM 7yrs ago, can you do more of Azure traffic manager (ATM), CDN and AFD?
I always find layer 7 products bit confusing with their HTTP headers and re-writes etc.!!!
Great one! Im curious what is the Pamelas version in OSI model?
lol, if you search for OSI and pamela anderson I'm sure it will be found :-)
Found it 🤣
Another thing that is confusing is when you create internal LB there is a setting that determines IP address assignment and by default it is dynamic. It is not clear what's that IP is used for.
Thank You!
Thanks for the information it was really helpful. I have a question, what was the use of creating service object in case of using App gateway ingress controller. As it directly interacts with pod. And again as pods may goaway how app gateway is going to track them.
I talk aks specifics in my aks networking deep dive.
thank you for everything
Very welcome
Very good video...do we need to choose session persistence option when handling network symmetry for NVA behind a Azure Load balancer or would the HA port feature suffice? Also, you did mention Azure LB supports "stickiness" in what scenario would one then chose a Session Persistence option. Thanks
for NVAs and symmetry that is the HA port option. separate the 5,3,2 tuples controls how sticky it will be and you pick based on the need to go to same backend based on variations in port/protocol.
@@NTFAQGuy good video. can we place NVA (Firewall) in Sandwidch model. External LB-> FW-> Internal LB, Is this work or any conflict with health probe we need to check ? . Outbound traffic will exit directly via Firewall, Inbound traffic hit the External LB and FW do SNAT and DNAT.
@@balasubramanianwv3877 you can have external point to NVA (which is normal) and then have NVA point to something via a load balancer yes.
John Savill let me check traffic flow
merci John. Feel smarter after that ;-)
This is gold!
Thanks!
Hey John,
Correct me if I am wrong, Azure Load Balancer/Front Door/Application Gateway are all Reverse Proxy solutions, right? They are proxies for servers.
Do Azure have any Forward Proxy solutions? I get these kind of questions from my customers.
You mean like azure firewall?
@@NTFAQGuy Yeah, Azure Firewall can do that... I don't recall that, thanks bro.
Hi John, As I read we have provision of having a load balancer integration option with App Service. In a normal case when we have a Azure Web app we would have a single end point , so am i correct to conclude it will not add a value in such cases. Also could not think over when we would have a use case where we have multiple end points and LB is useful with App Service. Usually such balacing acts is done within a given app and not across app? Sorry if i sound foolish but love to get ur feedback !
Generally load balancer is useful for balancing between multiple instances but even if single provides an abstraction so flexibility for future growth and some additional control.
@@NTFAQGuy thanks that was quick reply. For abstraction may be azure application gateway would be a better option? So we dont expose the web app to the internet directly.. Thanks
@@sid0000009 yes if it’s http traffic then can also get waf for added protection
Hello John, the LB SKU page is changed. The differences mentioned in this video considering different SKU's is still applicable.. right?
Yes
Hey John, if the traffic comes in from the load balancer (configured with outbound rules), and there is also a NAT gateway attached to the subnet, how would be reply traffic behave? Would it be using the LB outbound rule or NAT gateway? Thanks!
I have video on NAT gateway where cover this. Outbound reply will use same path as its inbound.
@@NTFAQGuy awesome, thanks John, will get to the NAT video soon :)
Thank you for share
My pleasure
Awesome Shirt!!!
Thanks :)
If my outbound traffic from my load balancer trying to access azure managed database..and I have service connecting to internet as well. How I can configure my load balancer for such scenario. Best practices and guidelines ?
Unless you use private link or service end points the traffic will follow the regular NAT pattern (with a couple of service exceptions). So regular rules for,outbound apply.
Is this also working with autoscale?? Lets say you have two webservers in the normal situation and you set autoscale to another two. Are these two new one automatically picked up by the loadbalancer??
When you autoscale that component would add the new instances (or remove) from the backend set such as vmss, aks workers, app service plans etc.
😁 I was taught the Pamela A too. We're getting old 😁
Lol
Hi John, did you miss one important point with standard load balancer that, it'll only support standard Sku IP address. If you try to add standard IP address in basic sky, it'll not work. It's a major problem.
Thought I said that. You have to use same skus. It’s called out in all the docs as well.
There is option for Floating IP (Enabled/Disabled)....Can you please explain whats the use of Floating IP enabled or disabled?????
I do cover it in the video.
Thanks for the video. Is the whiteboard file for this video available?
Added to description
@@NTFAQGuy Thank you so much for this. I really appreciate it.
What will source ip when direct server path taken ,will it be source as loadbalancer ip or vm ip . Clarify kindly :)
assuming you mean floating IP. if you turn on floating IP then the VM on backend sees the FE IP and port as the destination not its own. Traffic comes back from FE IP
@@NTFAQGuy thanks for.reply john, sorry my question is if iam accessing from internet to the vm which is behind loadbalancer forward traffic will go as u mentioned, from what source ip I will be seeing return traffic at internet machine level will it be loadbalancer public ip or vm ip or fabric ip
Is it possible to use internal LB with outbound IP rules? E.g. if we want to 'hide' VM IP's for our internal servers IP's and show only LB outbound IP (IP's)?
outbound to the internet is always NAT through an external IP if thats what you mean. the VM IP would never be seen.
@@NTFAQGuy For the external LB it is simple, but could we have similar functionality for internal LB, need to make it look like requests are coming from the single IP for the services hosted withing vnet
@@yahorsinkevich4451 not for non response traffic. Use a virtual appliance or fix why it has to come from one ip :)
I am still trying to figure out how Pamela Anderson fits into this ...
Lol
John where could I get that shirt man!? Heads in the cloud.
honestly don't remember where I got it. i bet if you search the internet you'll find a match.
If DSR the transmission is a-semetrical?
Well it does not go back via the mux but that’s an internal detail facilitated by sdn. Does not impact anything .
No no, please do tell about the Pamela Anderson thing. ;-)
lol
This guy reminds me the Brotherzzz actor...
I have no idea what that is :-)
What is the scenario for foating-IP?
Multi instance nvas typically.
Do you mean "People Desperately Need to See Pamela Anderson"?
Sure :)
@@NTFAQGuy 😂😂Got it Boss.
God, LB is so complex ..
This is a deep dive so I go into how it works but the reality is to use it you don’t need to know all of this detail. Good luck