Printer Friendly

Integrating Load Balancing Technology In Layer 4 Switches.

Companies continuously strive to increase market share, deliver better service, and provide higher returns to their shareholders. Increasingly, the company Web site, along with the IT infrastructure behind it, is playing an important role in helping to achieve these goals. Similarly, bandwidth management, 24/7 uptime, and high security are critical concerns for the IT managers in charge.

In the past year, various advancements such as accelerated network performance via Gigabit Ethernet and Layer 3 switching have removed the router bottleneck. However, content, software, network, and server failure can still threaten application availability. Resources are often out of balance with low performance resources receiving more requests than their higher performance counterparts.

Solving these problems requires an integrated approach, one that includes multi-layer switches and high availability load balancing appliances. Many switches typically provide wire-speed Layer 2 and wire-speed Layer 3 capabilities at a relatively low cost-per-port basis. However, when it comes to high availability load balancing at Layer 7, they tend to falter in performance as it relates to load balancing decisions per second. The fewer the decisions, the greater the backup of users blocked from trying to "get in" to a site.

Where is the switching market headed? Most likely, switch vendors will integrate Layer 4 load balancing functionality into their switch products. This directly addresses the market need of core wire-speed load balancing functionality in combination with wire-speed switching and routing capabilities. It provides for server load balancing, high availability, server health checking, and a majority of load balancing tasks. Second, the more specialized Layer 7 capabilities will evolve within appliances working alongside switches in a complementary fashion. That's because application technology is rapidly evolving and is, therefore, more appropriate to a software-based device rather than a hardware-based device.

This brings us to the first evolution of switches and load balancing, which involves the integration of Layer 4 load balancing directly onto the switch. In fact, switch vendors have already begun this process. Why? Quite simply, Layer 4 code represents the core functionality required to implement load balancing and it:

* Allows the balancing of IP protocols such as Web, email, FTP, LDAP, streaming audio and video, UDP, TCP, DNS, and SSL

* Allows the balancing of multiple network devices, including: Internet servers, firewalls, routers, cache servers, proxy servers, multimedia servers, VPN, NFS, and LDAP servers

* Brings load balancing algorithms to the switch; for example, round robin, least connections, ratio, and fastest

* Provides simplified coordination of switch, router, and load-balancing functionality

* Offers fewer devices to manage

* Provides flexibility in upgrades: no need to build a new ASIC (Application-Specific Integrated Circuit) when upgrades become available

* Delivers seamless integration between the switch, the wide-area traffic manager, and the file replication and synchronization product

* Provides a simplified, coordinated solution for switch and load balancing functionality

* Delivers coordinated policies for Quality of Service, access policies, and system security

* Gives customers a cost-effective switch--with wire-speed load balancing functionality

The more specialized application functions are considered Layer 7. Layer 7 is particularly useful in providing high availability and intelligent load balancing for mission-critical e-commerce and enterprise applications. Potential benefits include:

1. ECV (Extended Content Verification) and EAV (Extended Application Verification) server health checking (though TCP/UDP application port checking is included in the Layer 4 capability)

2. Filtering for traffic shaping and security; multiple persistence options through many different modes, including Source, Server, VIP, SSL, Cookie Persistence, and Destination Address Affinity

3. Greater network reliability and stability (it is easier to diagnose and correct problems that are isolated to a particular device)

4. Faster time to market as it relates to application changes and innovations

Layer 7 Integration Problems

One might ask: Why not simply embed Layer 7 technology into a switch, similar to the integration of Layer 4? Basically, Layer 7 is tightly integrated with the application infrastructure and specialized application Layer 7 functionality is more appropriately delegated to an appliance-based device than to a switch. For those environments needing application-level content checking, combining (not embedding) Layer 7 appliance functionality with the switch solution provides the greatest flexibility, performance, scalability, and manageability. Customers benefit through an open and flexible solution that is implemented through software, which can easily be enhanced and updated as necessary.

Some vendors are, of course, attempting to incorporate Layer 2-7 load balancing into their switches. However, close examination reveals that they are doing so by sacrificing functionality, including routing and performance.

For example, consider virtual IP addresses. The "right" integrated approach (switch+load balancing) can handle up to 10,000 virtual IP addresses without any significant drain on the product's overall performance. The "wrong" integrated approach (the "all-in-one" switch) translates into a product that is greatly limited in the number of IP addresses it can support, often as few as 256. Degradation of overall product performance can occur with as few as 40 IP addresses.

Another problem is the ability (or lack thereof) to troubleshoot when a problem occurs within the network. Is it the problem with the switch? Is it with the load balancer? Configuration and troubleshooting become a guessing-game, something few network managers will tolerate for very long.

Additionally, the load balancing functionality within these vendors' products is ASIC-based. To add additional Layer 7 functionality to the product, the vendor is tied to ASIC release cycles. Since ASIC cycles take approximately 12 months, customers will see 7 "Internet Years" pass them by before the product can address any new requirements.

Additionally, various surveys indicate that most customers prefer a "best-of-breed" approach to a consolidated approach when it comes to introducing functionality into their networks. Most customers prefer to have this mission-critical, high availability, and load balancing functionality in best-of-breed solutions that integrate tightly with their network infrastructure.

In the future, most commonly used load balancing capabilities will be incorporated into switching devices; the more specialized Layer 7 capabilities will continue to evolve within appliances working alongside switches in a complementary fashion. This is because application technology continues to evolve rapidly and event-driven and specialized Layer 7 functionality is more appropriate to an appliance-based device. The more common Layer 7 functions will eventually exist in switch products, as well, but typically not with the specialization associated with function-specific appliance devices. The agreements between high-availability, load-balancer appliance vendors and various switch vendors deliver the best of both worlds by allowing a "best of breed" solution for the "heavy-lifting" of most server load balancing applications and a specialized best-of-breed solution where application checking is required.

Brett Helsel is the vice president of product development and CTO at F5 Networks (Seattle, WA).
COPYRIGHT 1999 West World Productions, Inc.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 1999, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:Technology Information
Author:Helsel, Brett
Publication:Computer Technology Review
Date:Dec 1, 1999
Previous Article:Managing The Internet's New Terabit Core.
Next Article:Integrating Memory With OEM Systems.

Related Articles
Wire-once, provision-many: optimizing compute resources in the data center. (Storage Networking).
Network and application layer tests reveal security gaps.
Array Networks enhances traffic manager product line.

Terms of use | Privacy policy | Copyright © 2020 Farlex, Inc. | Feedback | For webmasters