ANSIBLE : Configuration of Haproxy


 

ANSIBLE

Ansible automates and simplifies repetitive, complex, and tedious operations. Everybody likes it because it brings huge time savings when we install packages or configure large numbers of servers.


Its architecture is simple and effective. It works by connecting to your nodes and pushing small programs to them. These programs make the system comply with a desired state, and, when they have finished their tasks, they are deleted.


To know more about ansible, check my this blog :  ANSIBLE : How Industries are solving Challenges using Ansible


HAPROXY

HAProxy is an open source, free, very fast and reliable solution offering high availability, load balancing and proxying for TCP and HTTP-based applications. 
It is particularly suited for web sites crawling under very high loads while needing persistence or Layer7 processing. It distributes a workload across a set of servers to maximize performance and optimize resource usage.

HAProxy can be used for Web applications (HTTP/ HTTPS) as well as for TCP based applications (MySQL, SSL, SMTP) etc.


  1. reverse proxy is a type of proxy server that requests network resources on behalf of external clients.
  2. forward proxy is a type of proxy server that requests network resources on behalf of internal clients.

LOAD BALANCER

A load balancer can be deployed as software or hardware to a device that distributes connections from clients between a set of servers. A load balancer acts as a ‘reverse-proxy’ to represent the application servers to the client through a virtual IP address (VIP). This technology is known as server load balancing(SLB). SLB is designed for pools of application servers within a single site or local area network (LAN).


Load balancers are used to provide availability and scalability to the application. The application can scale beyond the capacity of a single server. The load balancer works to steer the traffic to a pool of available servers through various load balancing algorithms. If more resources are needed, additional servers can be added.

Because the load balancer is sitting in between the client and application server and managing the connection, it has the ability to perform other functions. The load balancer can perform content switching, provide content-based security like web application firewalls (WAF), and authentication enhancements like two factor authentication (2FA).


CONFIGURATION OF HAPROXY 

USING ANSIBLE


Lets configure Reverse Proxy that is Haproxy using ansible Playbook.

Check this blog to know how to configure HTTPD on the top of docker container using Ansible playbook : ANSIBLE : Apache Web Server on DOCKER Container using Ansible


As every server has a hard coded limit. At one point in time, only limited clients can connect to the web server. If more clients try to connect, the will get some error. That's why we are using Load Balancer. 

Here we want to achieve high availability and extra security for our web server using haproxy.

But the problem is that, if we need to add more servers, we can add them by adding their IP in inventory file and run the playbook.
But how Load balancer will come to know that more servers have been added????

For this we will have to manually update the configuration file of Haproxy. And manually updating is not good as we are using ansible.

So the solution is, we can use JINJA language to write code in configuration file. The best thing about this language is we can write some code in between the texts. We can use template module for uploading configuration file of Haproxy.

So my configuration file for Haproxy in playbook is :


Here you can see i have used for loop in jinja to upload ip of webservers.

This is my ansible playbook code :






This is the output I got after running the playbook. 
Here you can see no red colored output come up. That means there is no error in the code. 



And this is my web page code in php :



After running the playbook, we can check in load balancer:

Haproxy has been installed .
And its running on port number 8080



Configuration file in load balancer :
You can see ip is updated in con file of haproxy.

Here i have used only one system as web server, but you can choose any number of webservers.
This ansible playbook will run for multiple servers.


In backend server you can see httpd has been installed and service started.
Our webpage is uploaded.



Using "ifconfig" command , we can check the ip of the system. 
Here ip of my system is 192.168.43.176 and webpage is running on port number 80.


Now to check the load balancer is working properly or not, search for <ip>:<port> of load balancer on any browser .


Here you can see my Load balancer is working. I'm getting ip of my backend server that means this webpage is running on my backend server.


Hope you like this..


Comments

Post a Comment

Popular posts from this blog

Automation Using Python

Image
  Welcome to my menu program This program contains fully automated technologies that can be run directly in any flavor of linux operating system This menu program contains some great technologies like : 1. Amazon Web Services (AWS) 2. Big Data Hadoop 3. LVM partition technique 4. Web Server 5. Yum  6. Docker This menu-driven program is built in python that can be useful in automation of above mentioned technologies. 1. Amazon Web Services (AWS) Using this menu program, you can do following things : - AWS key pairs      - Describe key pair     - create key pair     - Delete key pair - EC2 instance     - Create Instance     - Describe Instance     - Start Instance     - Stop Instance     - Reboot Instance     - Terminate Instance - Create AWS security group - EBS volume     - Create EBS volume     - Attach EBS volume     - Detach EBS volume     ...
Read more

NETWORK TOPOLOGY

Image
In this blog I'm going to create a  network Topology Setup in such a way that System A can  ping to two Systems System B and System C but both these systems should not be pinging each other without using any security rule e.g firewall etc . Every body thinks that in a network topology, if System A can ping to B and System B can ping to C, then it's obvious that system C can ping system A. But NO, Not Always... So in this blog, I'm going to show you how to create such topology. And believe me, doing this is so simple. It's just a game of netmask and routing table. Let's jump to the practical : System A : 1. Change the ip and netmask of system A to 192.168.1.20/16 2. Then add network range in the routing table .      Here I've selected the range such that it can ping to both of my other system. 3. By using route -n command, you can check the routing table  of System. 4. Using ifconfig enp0s3 command, you can check the ip of the system . System B : 1. C...
Read more

Chat Server using UDP

Image
  Create Chat Server  Specifications : Use Socket Programming Use UDP Data Transfer protocol Create server and receiver both Use multi-threading to get and receive data parallely Now creating Chat Server with above given specifications. This is the code for Chat Server using UDP protocol and using Socket programming. Here same program can send receive messege both at the same time. I've used multi-threading concept to send and receive data parallely from multiple Server sides. These are the two servers that I used for my chat server - chatApp : And using multi-threading , i sent data parallely from two servers. one from Linux and another one from windows : Hope you liked it :)
Read more