moooofly
commented
5 years ago ELB is dropping connections?
We appreciate the feedback resulting from your performance tests. We want to provide some information about the Elastic Load Balancing service that should help guide testing and benchmarking efforts:
- Clients should leverage a dynamic set of IP addresses that may appear at any time behind the DNS entry for your Load Balancer.
- When creating a Load Balancer, you are given a DNS name for your clients to use to find out where to send traffic. Behind this name, we place a dynamically changing set of IP addresses, of which each of your clients will get one per resolution and use it for a while. Our support for high availability and multiple availability zones, as well as our ability to dynamically scale your load balancing capacity leverages our ability to change the set of IP addresses behind the DNS name from time to time.
- Testing with a single client machine will result in using only one of these IP addresses. When a larger set of independent clients resolve the DNS entry and get different IP addresses to use, they will effectively spread the load amongst the full set.
- Your test should ramp up over time and run for long enough to see the benefits of dynamically scaled load balancer capacity. As your traffic increases, load balancing capacity ramps up somewhat smoothly, partially by changing the set of IP addresses behind the DNS entry. These IP addresses may take a bit of time to be picked up and used by your clients. Make sure each of your test clients re-resolve the DNS name periodically as the test progresses.
- When using HTTP load balancing, you can maximize performance by enabling persistent connections on your back-end instances. The load balancer then manages the high connection rate from the internet while maintaining a smaller set of stable, persistent connections to your back-end instances. To support this TCP connection offload feature, all you need to do is enable persistent connections in the HTTP server software that you are running on your back-end instances.
In general, I'd suggest that you collect historical data or estimate a traffic profile and how it progresses over a typical (or perhaps extreme, but still real-world) day for your scenario. Then, add enough headroom to the numbers to make you feel comfortable and confident that, if ELB can handle the test gracefully, it can handle your actual workload.
The elements of your traffic profile that you may want to consider in your test strategy may include, for example:
- connections / second
- concurrent connections
- requests / second
- concurrent requests
- mix of request sizes
- mix of response sizes
ELB attempts to stay ahead of an increasing load, so connection attempts should continue to succeed.
You don't need to generate test traffic from an enormous number of clients. But don't generate all your test traffic from one or just a few clients. A dozen clients per configured availability zone should more than do the trick. Just divide your desired load amongst them and make sure each refreshes their DNS resolution results every few minutes.
Having a spread of source IP addresses is not necessary - the main point is that the full set of IP addresses provided by DNS are utilized.
The ELB system strives to scale ahead of demand but wild spikes in traffic demand (such as 0 load to full load swings during initial load testing) can temporarily run past it's provisioned capacity which will result in 503 Service Unavailable until the system can get ahead of demand. Under extreme overload, timeouts can occur. Customer traffic flows are typically gradual swings that occur at rates measured in minutes or hours, not fractions of a second.
之前通过命令,每 15min 抓取了一次
digELB 的输出,从输出上看,ip 列表一直在发生着变化经过和 aws 技术支持的沟通,了解到通过上述
dig命令是无法获取到完整 ip 列表的,需要使用如下命令进行 ip 列表获取:其中
dig前者获取到的内容会更准确;经过改良,可以使用如下命令实现:每一分钟测试一次 elb 全部 ip 地址的连通性
每 15 分钟 dig 一次获取 elb ip 地址列表(前 8 个)
客户端 app 从 DNSPod HTTPdns 上获取 ip 列表的命令
这个是基于免费接口的调用,真正使用的企业版接口,略微有点差异
AWS 的反馈