Ask An AIS Engineer

Want to Ask An AIS Engineer? Send your questions to ask@americanis.net

Q. What's the typical setup for managed load balancing setup for two servers? Can I put one server in Los Angeles, and the other in Phoenix, and load balance between both?

Anthony W.
Irvine, CA

A typical application is load balancing a website across two or more servers. In the simplest scenario, the website will be assigned a "public" IP address on the F5 BigIP load balancers. The servers will be connected to a dedicated back-end network on the load balancers and will have their own private IP addresses. This is the "server pool".

Website traffic will be distributed across the server pool according to a selected method, including directing traffic to the least-loaded servers or by using persistence. Persistence keeps a user's web traffic going to the same server throughout a web session. This is particularly useful for ecommerce transactions. If a server goes offline (e.g. for maintenance), the load balancers detect the failure and immediately redirect traffic to other servers in the pool.

Multi-site load balancing (e.g. Los Angeles / Phoenix) is used as a high-availability and/or business continuity strategy. For this application, we use F5's Global Traffic Manager (GTM) technology. The GTMs use a combination of DNS and deep integration with the F5 BigIP load balancers to provide a number of service delivery options, including geographic optimization of content delivery and disaster recovery. A typical deployment would be two load balanced server pools in geographically diverse data centers, controlled by two or more GTMs.

 

Q. Every few months, I seem to need another block of IP addresses. At what point should I buy my own space from ARIN, as opposed to leasing the address blocks from my data center? What are the pros and cons about owning ARIN space? Are there any alternatives to ARIN?

Chris K.
La Jolla, CA

Chris, this is a fairly common concern for any growing company that uses public (non-NAT'ed) IP addresses. There are good reasons to get your own block of IPs from ARIN!

Multi-homing: This is probably the most common reason because most larger businesses are interested in maximizing their network uptime. Multi-homing means routing your traffic via multiple upstream providers, allowing you to select better or lower-cost routes at your own discretion. This is also a common strategy to mitigate outages in a primary provider that may be due to equipment failure or DDoS. The downside of multi-homing is that it requires some level of network management and exposes you to potential downtime from the added complexity.

Mobility: Having your own block of IPs means that a change of transit or colocation service providers does not require a change of IP addressing. If you use a service providers IPs, it can be operationally costly to renumber your network during a transition to a new provider.

DNS / SWIP control: This is a minor benefit, but deserves mention. Once you have your own IP block, you can provide rDNS service (reverse DNS lookups) and can SWIP IPs to your own clients. This can streamline updates and help fight network abuse such as spamming and phishing by providing public contact information for notification.

When should you consider making the transition to your own IP block? You will need to be able to show that you actually need enough public IP addresses to justify an IP address block.

If you are a multi-homed client (having a direct connection to 2 or more upstream providers), ARIN will issue a minimum allocation of a /22 (4 Class C's) if you are currently assigned and using at least 2 Class C's. If you are not multi-homed, then you must be assigned and utilizing 16 Class C's in order to qualify for their /20 minimum allocation.

Before you go chasing after your own IP allocation, remember to consider the costs: ARIN charges a yearly fee for IP addresses and you may incur hardware and support costs to manage your new network.

 

Q. Why does some of my internal traffic show up in my data center's internet bandwidth usage? Shouldn�t internal communications be separate from my total usage?

Jim L.
Phoenix, AZ

Great question, Jim. American Internet Services (AIS) bandwidth measurements are based upon Simple Network Management Protocol (SNMP), the industry standard for measuring bandwidth among Data Center and Internet Service Providers. Simply put, SNMP counts the number of packets received and transmitted on a network interface. Bandwidth usage is calculated by recording the SNMP measurements; over time. - in our case, once every five minutes on a client's network interface. There is no way for SNMP to distinguish between internal traffic and external traffic, so any received traffic counts towards total bandwidth usage. If a data center client directs traffic to the network interface, the router has to look at it -even if it's not supposed to do anything with it. In the vast majority of cases this is not an issue, but if a client has a misconfigured network they may send a significant amount of unintended traffic to the network interface. This can result in bandwidth overage charges, fees that can be easily avoided by fixing the source of misdirected or needless traffic.

Here are two solutions for the most common network misconfigurations:

A) Configure internal servers to use non-routable network addresses for server-to-server traffic (e.g. backups), preventing any local traffic from being directed to the upstream (public) network interface

B) Place a router or firewall in front of the client network to isolate internal traffic from the upstream network interface

While a data center provider has no direct control over its clients' internal network configuration, AIS offers several engineering support options to help clients set up and troubleshoot their networks: AIS network engineers are available on a consultation basis for most network configurations. Alternatively, we can provide contact information for third party vendors who can set-up and manage our clients' networks.

Thanks for the question Jim, hope this helps!

REQUEST INFORMATION