ALB / ALB-X /ALB-VA
Contents
1. Organization Ltd rganzatonal ne Techn suspor cuoc Maidenhead State Provnce Berkshire Count UK nadom Dora vmwdetnexus com es Patod days 90 Loca Crates ate ace cue F creat rue The certificate request is displayed in a popup window as shown below so it can be copied into the Certificate Authority Request form etic nee ay the test nc tote creer Cmte bert E xf JetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 73 of 107 jetNEXUS Makes Applications Fly JetNEX S Installing Trusted Certificates Using the Navigation bar on the left of the web interface go to Configure gt SSL and select Manage Certiicates a wil open the manage certificate tab Select the corresponding certificate request from the list box on the left hand side of the screen Manage Certificate Select Certificate to manage To Petala paste tot below amp cle Ipsae Breen nnn Select the certificate you wish to manage using the drop down Select Certificate to manage To install a certifcate paste SelfSgnedExample Pending certificate text below amp cick Instal SelfSgnedExamplel Pending Copy and paste the certificate supplied by the Certificate Authority into the certificat2. Accelerate HTTP Layer 7 with compression HTTP Layer 7 no compression FTP Layer4 Layer 4 Configuring a new channel To configure the new click the Add IP button Channel Dotais Bar Gare E Sata Frajed PAcaress Sublet Mask Port Service tame Service Type Cone ial a In this example we will configure the following IP details based on One Armed Configuration Channel details IP Address 10 0 34 100 Subnet Mask 255 255 0 0 Port 80 Service Name Port 80 Traffic Test Service Type Accelerate HTTP Max connections 10000 Encbled IP Address Sublet Mask Port Service lame Soris Type Man Connecti Statue 40024100 25526600 00 Far OO Trefe Test Accebrte TTP 10000 You have now configured the Channel Details Setup Destination Details JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 35 of 107 JetNEX 5 jetNEXUS Makes Applications Fly When you add a channel IP the first content server is added for you this blank field allows you to add the IP Address and Port of your backend server OE re Content Server Group Name Seer Group ree IE E rJ Content Server descriptions Configuration options are described below Content Server Group Name You can specify a name for the content servers Status This service indication light will show if the
3. 1 jetNEXUS Limited All Rights Reserved Page 105 of 107 JetNEX S jetNEXUS Makes Applications Fly jetNEXUS Help FAQ s Q How much improvement will achieve compared to uncompressed web sites That will very much depend on the design of the website and in particular the graphic content Typically our customers see a 4096 6096 reduction in bandwidth usage and a 3095 5095 improvement in total page download times Can the ALB also support content servers on any interface A Yes the ALB can support content servers on any interface depending on your use of channel configurations Please contact support jetNEXUS com if you wish to enable this configuration and you are having issues AE ACCELERATING LOAD BALANCER 1926810011 19216840012 Firewall Web Traffic sent to the jetNEXUS ALB which is Listening on 192 168 100 100 for ports 0 amp 443 192 168 100 200 for ports 80 amp 443 Redside 192 168 100 251 Listening iP 192 168 100 200 Ports 80 443 ALB then creates connection of ts wn to the content servers based load balancing policy Greenside Ethi 10 0 34 100 ALB then creates a connection ofits own to the cantent Servers based on a load balancing Redside tho 192 168 100 251 Listening IP 192 168 100 100 Ports 80 8 443 svr_Web_1 Svr 2 1003411 1003412 jetNEXUS ALB ALB X User Mani 11 jetNEXUS Limited All Righ
4. atest TameTest Acoela kT 10000 Content Server Detail Content Sener Group ame Saver up Content Servers Eg Aa new Egrereve Suus Adress jon o o 46 a m o D w The original channel is still in place and active these rules now services port 80 amp 443 to the content servers Via the virtual IP of 10 0 34 100 Channel Detail Eus pene crane T7 Enabled Address Mack Por Serdcellime WO woso _Acciie HTP 10000 o Wi mnm a 4H FASTI Acetic TP XOU You have now configured a new channel IP Service port JetNEXUS ALB ALB X User Mai Page 42 of 107 ual Copyright 2011 jetNEXUS Limited All Rights JetNEXS jetNEXUS Makes Applications Fly po Adding an addi channel IP To add another listening IP addresses click on the Add IP button This will bring up a new section including the option for the second IP address and port E g z H 2 p You can now type in the Details for your new channel IP service and configure the content servers and actions for this new service ui Acus 10008 Content Server Details Content Server Group name Bener Groun Content servers ascen Eis e E Channel Status lights There are two groups of status lights One for the Channel
5. Direct Routing in some circles allows the server behind the load balancer to respond directly to the client bypassing the jetNEXUS on the response DSR is suitable for using with layer 4 load balancing only therefore Caching and Compression are not available when enabled Layer 7 load balancing with this method will not work therefore there is no persistence support other than source IP SSL TLS load balancing with this method is not ideal as there is only source IP persistence support How it works Client sends a request to the jetNEXUS Request received jetNEXUS LB ALB X User Manual Page 31 of 107 jetNEXUS 1 jetNEXUS Limited All Rights Res JetNEX S jetNEXUS Makes Applications Fly Request routed to content servers Response sent directly to client without passing through JetNEXUS Configuration Your content server will need to be configured to have a new Alias added to the loopback tterface This Alias needs to be the same as the channel IP on your jetNEXUS which you have configured DSR Diagram JetNEXUS ACCELERATING LOAD BALANCER Client Makes a request to the ee Firewall Web Traffic Is sent to the jetNEXUS ALB Which has a channel IP Listening on 10 0 34 100 80 jetNEXUS ALB Forwards this request onto the content server Listening IP 10 0 34 100 80 Content server 10 0 34 11 80 Content Server The content server then responds
6. Enable Connection 7 connection poo sue 2008 You are then given 3 options Select Caching rule By Channel 7 select SSL Certificate ce By Host Connection Pooling Channel By Host Once By host is enabled the ALB will then begin monitoring the domain names served to clients via the defined Channel Prior to activation the middle section of the Configure 2 Cache screen was empty Page 65 of 107 jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights jetNEXUS Makes Applications Fly Apply Cache Rule Other Domains Served Domain Name Remove Doman With caching activated and traffic passing through the ALBX any domains served though not yet cached via the Channel will appear in the middle section in our example Www jetnexus com Apply Cache Rule Other Domains Served Dorain Name Ee Eres on www jetnexus com By pressing the arrow next to the domain name www jetNEXUS com the domain is added to the cached domains list and a caching rulebase can be applied Note that the dropdown list of available rulebases includes the two examples we defined earlier in this section Select one of the rulebases in the list and press the 24 at the right of this section to apply the change jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 66 of 1
7. Page 14 of 107 JetNEXS jetNEXUS Makes Applications Fly Wee You will be prompted for the following information IP Address The Management IP Address of the device Network Mas The network Mask of the Device s management IP Configuration Port The configuration port of the secure web interface Gateway The Default gateway Server Ref name to identify the device In this example we have configured the following detail Mac Address 00 00 28 40 92 82 IP Address 1003456 letwork Mask 255 255 0 0 Config Pot 27378 Gateway 10 0 03 Server Ref ie NEXUS Prod T Release Code IP Address 10 0 34 66 Network Mask 255 255 0 0 Configuration Port 2736 Default Gateway 10 0 0 1 Server Ref jetNEXUS Prod 1 Once you click on the apply button you will be prompted for the password fos ies aus access 1 Please enter the admin password for 00023222870 NEXUS ALB X v3 1 VA Default password is jetnexus LB ALB X User Manual ved Page 15 of 107 jetNEXUS JetNEXS Your Configured device with the new IP Subnet and ServerRef will now show in the discovery screen See Load Balancer Discovery actons Help MEC Addres Cont Fat Ie Address Net ask Gateway Severe DEEI ZA DUI UD ILULA Erec cnategracaa 277798 10078 5525500 10006 p Double click on the ALB you would like to configure and it will
8. User on the 10 0 34 x network accesses the Listening IP 192 168 100 100 JetNEXUS ALB pringe uH Ports 80 amp Accepts connections on a Content server 10034 11 Listening Service IP and port ContentServer 1003412 TIh210 038 100 Listening IP 10 0 38 100 Ports 80 amp 443 Content server 10 038 24 ContentServer 1003825 ALB then creates a connection ofits own to the content servers based on a load balancing policy Web 1o Web 2 1003411 1003412 Su Web 24 Sv Web 25 1003824 1003825 JetNEXUS ALB ALB X User 2011 jetNEXUS Limited All Rights Page 29 of 107 JetNEXS jetNEXUS Makes Applications Fly Wee Deploying a single network interface configuration Using the Navigation bar on the left of the web interface go to Setup Appliance this will open the T Appliance c allowing you to access the adapter settings The example below shows that we only have the address of 10 0 34 66 assigned to ethO and this shows that the device is currently running in a single network interface configuration Adapter Details Ee s r E mas een i Deploying a multiple network interface configuration Using the Navigation bar on the left of the web interface go to Setup Appliance this will open the T Appliance o allowing you to access the adapter settings The example below shows that we only have the address of 10 0 34 66 assigned to ethO b
9. to you Google UA ID Conditions New conditions can be added by clicking Add New button Condition Evaluation Action Egacanev Multiple conditions can be used but all must be met for the rule to execute To use an OR you would need to create an additional flightPATH rule Each condition contains three elements and a value or not depending on the condition Some conditions can accept two values such as Cookie that can have the Match Value i e the cookie name and the Value i e the Value of the cooki The conditions are listed below Condition Description Example Hast This is the host extracted from the URL www mywebsite com or 192 168 1 1 language This is the Language extracted from This condition will produce a dropdown with a list of the language HTTP header Languages Path This is the path of the website Tmywebsite indexasp Cookie The is the name of a cookie Query This is the name and Value of a Query NEXUS Where the Match is Best and the as such it can either accept the query Value is jetNEXUS or a value also Query String The whole query string after the char Best jetNEXUS amp Name Me imited All Right Page 49 of 107 JetNEXUS ALB ALB X User Manual Copyright 2011 jetNEX jetNEXUS Makes Applications Fly JetNEXLS Method This is a drop dawn of HTTP methods _ This isa dropdown that includ
10. All Rights Reserved Page 45 of 107 jetNEXUS Makes Applications Fly JetNEX S flightPATH Menu Using the Navigation bar on the left of the web interface go to Configure gt flightPATH this will open the 5 fli amp htPATH tah allowing you access the flightPATH configuration menus Doscrpton use dec hini r requests to fers Cose robes Desyremiessto folders Mites cgitin n requests to Cols Log spier Lag ls requests ot popar search engines Condion amp vabaton Acton Tacs new sene van p 9 The flightPATH screen is broken down into the following sections Details The details screen has a few pre built examples for you to use and also give you the ability to add new rules Conditions Set multiple criteria to trigger the rule Evaluation Variables that can be used in the Action Actions The behaviour once the rule has triggered What is flightPATH flightPATH is a rule engine developed by jetNEXUS to intelligently manipulate and route HTTP and HTTPS traffic It is highly configurable very powerful and yet very easy to use A flightPATH rule has three components Conditions Evaluation Actions JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Reserved Page 46 of 107 JetNEX 5 jetNEXUS Makes Applications Fly What flightPATH Do flightPATH can be used to modify Incoming and Outgo
11. Basic setup Server Ref jetNEXUS Prod 1 DNS Server 10601 2 Failover Enabled Falover Enabled 7 Failover Timer msecs 10000 Failover enabled when ticked enables the failover controls this allows the appliance acts as a as part of a High Availability cluster When you have more than one jetNEXUS ALB and require high availability failover tick this box However this will be discussed in more detail later on in this guide Failover Enabled Failover Enabled 7 Failover Timer mSecs 10000 Server Nagle and Client Nagle can be enabled to pace connections where content is small These options are not enabled as default and should only enable on older slower networks Advanced Network Setting Server Nagle Cient Nagle This is not required for HTTP communications but can be beneficial with some protocols on a Layer 4 channel Once all information has been entered please use both update buttons Fausse You have now configured the Appliance tab LB ALB X User M jetNEXUS Page 21 of 107 JetNEXS Setting the Default Route Using the Navigation bar on the left of the web interface go to Setup Network this will open the P Network tab allowing you to add the Gateway and Static routing information On this screen we configure a default gateway and routing you must set Gateway IP Address Default Route Defaut Gateway In this example have configured the Gateway of
12. Duplex MI If you have changed any of these settings click the update at the top of the screen You have now configured the Hardware tab jetNEXU ALB X User Manual Copyright JetNEXUS Limited All Rights Page 23 of 107 jetNEXUS Makes Applications Fly OUEST Advanced Networking Bonding Using the Navigation bar on the left of the web interface go to Setup Hardware this will open the il Hardware ay What is bonding Bonding allows you to aggregate multiple ports into a single group effectively combining the bandwidth into a single connection Bonding also allows you to create multi gigabit pipes to transport traffic through the highest traffic areas of your network Bonding Modes The jetNEXUS ALB supports many different bonding types these are listed below with a brief description Balance rr The Balance Round Robin mode It transmits packets in sequential order from the first available slave to the last Active backup The Active Backup bonding mode Has one interface will be live and the second interface will be in standby This secondary interface only becomes active if the active connection on the first interface fails Balance Xor The XOR bonding mode Transmits based on source MAC address XOR d with destination MAC address This selects the same slave for each destination Mac address Broadcast The broadcast bonding mode Transmits everything on all slave interfaces 802 3a
13. EejRemove Enabled Address Sublet Mask Servicetlame Service Type Connecti 13430 5525500 Acetic HTTP 10000 joossico 20020000 Actes HTTP 10000 This will add another grouping of settings similar to the first set This time you don t need to specify the listening IP or subnet as it has already been added Enabied 1P Ad rese SublletMaek Servicellame SemiceType Max Connecti gi 10034100 25525500 80 Porto Traffic AcseerateHTTP 10000 E 10034100 25825600 AcoeerateHTTF 10000 This now allows you to set up the new port and a set of web servers These can be the same as or different from the first ones Example IP Address 10 0 34 100 Subnet mask 255 255 0 0 Port 443 Service Type Accelerate HTTP Connections 10000 Content Server group Name Traffic Test Content Servers 10 0 34 96 10 0 34 97 10 0 34 98 Port 443 Automatically propagated from the first rule Page 41 of 107 jetNEXUS ALB ALB X User M 1 jetNEXUS Limited All Rights Res JetNEX 5 jetNEXUS Makes Applications Fly In the example below 1 have added my 3 content servers to my existing load balanced channel but this time for port 443 Channel Deas Eger Eds Chane me Enabled ieAdiess Sublet Mask Service Mame Service Ma Connecti m 10034100 25625600 B0 PotOTreHc lest 10000 WH
14. Have Check the length of the match Check the length of the Host Length Value 16 www jetNEXUS com TRUE aww jetNEXUS co uk FALUE Match This enables you to enter a full Perl compatible regular Test for IP Address Regex expression 25 0 5 210 4 0 5 0 1 1 0 SI 2 912 10 91 2 2 9 25 0 5 2 0 4 0 9 0 1 1100 9 12 1 9 2 0 9 2 2 9 0 25 0 5 20 A jf0 9 0 1 0 0 8 2 1 8 00 SICH LI 9 I0 2510 5 20 4110 91 0 1 000 912 1 9 0100 9 1 0 9 Example We can create the Condition if the Path does contain the IP Address 10 0 34 100 the Actions and Evaluations can be applied to it Condition Gs icum New Eden User Manual Copyright 2011 imited All Rights Reserved Page 51 of 107 jetNEXUS Makes Applications Fly Evaluat n Jet NEXS Adding a Variable is a very powerful feature that will allow you to extract data from the request and include this in the actions For example you could log a user username or send an email there is a security problem New Variables can be added by clicking Add New button Condition variable name has to be in the following format Eade new Evaluation Action Eg Remove name So for example we would like to create a variable of the file extension fileext Path From the drop down ait
15. JetNEX S User Manua ALB ALB X ALB VA jetNEXUS Solutions Limited Grove Business Park Cedar Court Waltham Road Maidenhead Berkshire 516 3LW Phone 0870 382 5050 or International 44 1628 820 630 Fax 0870 382 55 20 or International 44 0 1628 820 647 Author jetNEXUS Solutions Limited Reviewed Greg Howett Modified Christie Version 2 4 2 1 Current 1428 Created 08 09 2011 Release Date 28 02 2012 jetNEXUS Makes Applications Fly Copyright 2005 2011 jetNEXUS Ltd Rights Reserved 2005 2011 jetNEXUS Ltd All rights reserved jetNEXUS and the jetNEXUS logo are registered trademarks of jetNEXUS Ltd jetNEXUS Ltd reserves all ownership rights for the jetNEXUS ALB ALB X product line including software and documentation Limitations This document and all of its contents are provided as is jetNEXUS has made efforts to ensure that the information presented herein are correct but makes no warranty express or implied about the accuracy of this information If any material errors or inaccuracies should occur in this document jetNEXUS will if feasible furnish appropriate correctional notices which Users will accept as the sole and exclusive remedy at law or in equity Users of the information in this document acknowledge that jetNEXUS cannot be held liable for any loss injury or damage of any kind present prospective including without limitation any direct special inci
16. Page 63 of 107 jetNEXUS Makes Applications Fly Create Cache Rule comert Sect ult Ram seine Ve Alea acie Cache Doscriton aa conamon Conaitona Cache fora o mance B ony kroum grase E ude pna ache b noude re ache content that includes opos rete os If there s a mistake in any of the values you can either edit or delete the line later Click the P428 puton to make the changes take effect Remember that you can edit the content and click the LENLE button again at any time to revise the rule base jetNEXUS ALB ALB X User Mani ight 2011 jetNEXUS Limited All Rights Reserved Page 64 of 107 JetNEX 5 jetNEXUS Makes Applications Fly Associating Domains to a Cache Rule base You will need to first Activate the caching checkbox in Setup IP Services This will open the IP Service tab Servers Select the channel you wish to enable caching on and click on the actions tab Channel Details Esse Tune sanean Tenkelane Senee Type Man Connect Se Ca 103410 28825560 80 FoneoTisttcTet Acoskerate TTP 10000 B 30034100 25525500 483 443 Tes Accelerate HTTP 10000 Accelerate HTTP 19000 s xs Server Montorng TC Connection LIES Load Bebncrg Poley Lens Connections Select Cechng nule By hace Select SSL Certficste No S5L
17. addition to this the CLI can be used to reset the device to its factory defaults Accessing the CLI The CLI can be accessed by three methods SSH client assuming it has not been disabled in the configuration Specify the destination you want te connect to Host Name or IP addess Pont 22 Connection C Raw C Tenet C Riogn SSH Serial Serial 85232 connection 9600 parity 8 Bits Connect to the device using one of the methods as described above Log into the console with the following credentials Username admin Password jetnexus To change the management IP address run the following command et greenside x x x x You will then be told the Greenside has been changed Page 104 of 107 Jet NES jetNEXUS Makes Applications Fly To change the subnet mask Command Set mask ethO X X X X You will then be told the Greenside has been changed You can check your changes by running the show command for example show greenside IP If you need to change the default gateway you need to run the following command In this example it will change it to 192 168 10 1 Be careful when changing the gateway remotely as if you get it wrong you may have a long drive Command route add default gw 192 168 10 1 To return the device to the factory defaults type the following Command defaults his CLI type exit jetNEXU ALB X User Manual Cop
18. and multiple for the content servers Application server and or channel are providing service Application server and or channel is NOT providing service Channel is in standby as the primary is serving or server is offline Secondary channel is assessing primary service state eoe Not in use Unit not licensed jetNEXUS ALB ALB X User 1 jetNEXUS Limited All Rights Page 43 of 107 JetNEX S jetNEXUS Makes Applications Fly Server Health Monitoring When in a normal running situation the ALB will initiate active connections to the applications servers when a user makes a request In addition to this the ALB can also perform active server monitoring This active monitoring can be configured to perform more advanced test to validate if the web server can provide service These tests occur irrespective of any load The choices for tests are as follows None No active monitoring Ping gt Perform a ping HTTP 200 OK Check the response code form the web server is 200 HTTP Response Check the body of the response for a particular string Configuring Server Health Monitoring Using the Navigation bar on the left of the web interface go to Configure monitoring this Monitoring will open the tab allowing you to access the monitoring options To add a new monitor you will be presented with the following screen Monitoring Method Page Location Required Content 00K C
19. communicate as if they were attached to the same broadcast domain regardless of their physical location Configure a VLAN On the Adapter settings screen you have the ability to add VLAN information into the box highlighted below 9 Paares Rosie Men console ex p prm Gren ste JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 27 of 107 JetNEX 5 jetNEXUS Makes Applications Fly TOURS ALB Implementation There are two fundamental ways to deploy jetNEXUS Accelerating Load Balancer Single network interface configuration Enabling only the ethO single network interface and installing your jetNEXUS ALB into the same network as your Web server Applications servers flat network this is suitable for most scenarios All inbound and outbound traffic passes over this single network interface jetNEXUS ALB accepts connections on a listening Channel The combination of IP address and port and holds this It then creates a connection of its own to a backend server based on a load balancing policy When it gets the required data from the server the jetNEXUS ALB then sends it on to the client In this configuration the web management traffic also goes over the single JetNEXUS ACCELERATING LOAD BALANCER Firewall Web Traffic Is sent to the jetNEXUS ALB which is Listening on 10 0 34 100 for ports 80 amp 443 jetNEXUS ALB Accepts conne
20. diagram JetNEXUS ACCELERATING LOAD BALANCER Firewall Web Traffic Is sent to the jetNEXUS ALB s which are Listening on 10 0 34 100 for ports 80 amp 443 jetNEXUS ALB 1 jetNEXUS ALB 2 Accepts connections Accepts connections on the same on the same Listening Service IP and port Listening Service IP and port Base IP 10 0 34 251 inary Listening IP 10 0 34 100 Listening IP 10 0 34 100 Ports 80 amp 443 Ports 80 amp 443 ALB then creates a connection of its ALB then creates a connection of its own to a content server based on the own to a content server based on the load balancing policy load balancing policy Svr Web 1 Svr Web 2 Svr Web 3 Svr Web 4 1003411 1003442 1003413 1003414 Both units have failover enabled but are using channels to enable failover for services ual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 81 of 107 JetNEXUS ALB ALB X User Mai JetNEX S jetNEXUS Makes Applications Fly Failover diagram explained Both units have different Base IP s but the configuration for Channels are the same Base IP 10 0 34 251 IV Primacy Base IP 10 0 34 252 Primary Listening IP 10 0 34 100 Listening IP 10 0 34 100 Ports 80 amp 443 Ports 80 amp 443 ALB then creates a connection of its ALB then creates a connection of its own to a content server based on the own to a content server based on the load balancing policy load balancing pol
21. to new URL Redirect This will issue permanent redirect You can use this redirect to HTTP by setting a Variable to the path and URL log Event This will log an event to the System log e Mail Will send an email You can use a variable as the address or the message Drop This will drop the connection Use Server Select which server to use Content server Body Replace First Body replacement first Replace with Body Replace Last Body replacement last Replace with Body Replace All Body replacement All Replace with Replace Request Header Replace request header Replace header information Add Request Header Add request header Add new header information Replace Response Header Replace the response header Replace header information Remove Response Header Remove the response header Remove header information Il Righi v Page 53 of 107 jetNEXUS Makes Applications Fly JetNEXLS Add Response Header Add request header Add new header information Replace Request Cookie Replace request cookie Add new cookie Remove Request Cookie Remove request cookie Add Request cookie Add request cookie Add new cookie Example We can create a redirect action so the URL is redirected to an external site Eien Action sace Fase tion 7 Target Target Desc
22. under which jetNEXUS will not attempt to compress This is useful because anything much under 200 bytes does not compress well and may even grow in size due to the overheads of compression headers Safe Mode This option prevents the jetNEXUS ALB from applying compression to style sheets or JavaScript The reason for this is that even though the jetNEXUS ALB is aware of which individual browsers can handle compressed content some other proxy servers even though they claim to be HTTP 1 1 compliant are unable to transport compressed style sheets and JavaScript correctly If problems are occurring with style sheets or JavaScript though a proxy server then use this option to disable compression of these types However this will reduce the overall amount of compression of content Disable Compression Stops jetNEXUS from compressing any response Compress as you Go Is an option to modify the buffering of the sever response There are three setting By Page Request On off By Page request Each page will need to have a header to let ALB know that you want to chunk the response On Compress as you go will be enabled on all pages off Compress as you go will not be used LB ALB X User M jetNEXUS Page 90 of 107 jetNEXUS Makes Applications Fly Wee Compression Exclusions To exclude files from compression go to Advanced gt Protocol gt HTTP This will open the Tab 18 to Add a line
23. 07 jetNEXUS Makes Applications Fly Domain names can also be added manually rather than waiting for the ALBX to collect them for you by pressing the button Enter the domain name you want to add select a caching rulebase from the dropdown list and press the Update button ition and configuration of ALBX by host caching jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 67 of 107 JetNEX S jetNEXUS Makes Applications Fly By Channel Prior to activation the middle section of the Configure 2 Cache screen was empty Once By Channel is enabled the ALB will then begin monitoring the Listening IP and port Example 10 0 34 100 80 Pop cacha ni ter Donan ered us Bere Sse po You can monitor caching behaviour via the Monitor screen Content Statistics caching Content Caching Bytes From Cache 105 164 2 kB 0 3 From Server 70 DE Cache contents 222 entries 164 2 kB 0 3 You have now configured a Caching JetNEXUS ALB ALB X User Manual Copyright 2011 jet NEXUS Limi ed All Rights Reserved Page 68 of 107 JetNEXS jetNEXUS Makes Applications Fly Wee Using the Navigation bar on the left of the web interface go to Setup Services page This will open the 2 Serves tap What is connection pooling Connection pooling minimises the connections to
24. 10 0 0 1 on eth 0 once you have configured your gateway click the update button Default Route Defautt Gateway 0 0 0 1 etho Setting a Static route Static routes can be added by clicking on the Add Route button Static Routes Eg Remove Route You will need the destination address and mask the gateway and adapter Once the details filled in click update to action the settings A tick is shown in the Active column when the route is implemented Routes destination 77 asic You have now configured the Network tab jetNEXU ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 22 of 107 JetNEX 5 jetNEXUS Makes Applications Fly Setting the network speed Using the Navigation bar on the left of the web interface go to Setup Hardware This will open the B Hardware allowing you to set the Interface speeds The settings on this screen control the network access The defaults are to fix speed at 100 Mbps and full duplex This avoids any issue with certain networking devices that have auto negotiation which re negotiates too frequently The device can support speeds from 10 to 1000 for 1000 this should set to auto auto If this does not work set the exact network hardware values eras 3 gt ET E ps ED m To change the values cick on Speed or
25. 3 of 107 JetNEXS jetNEXUS Makes Applications Fly Weser Configuring a channel sei Adding a load balanced service Using the Navigation bar on the left of the web interface go to Setup Services this will ap services open the tab allowing you to access the IP Services options The IP service page is spilt into 3 sections each section must be completed after each other to enable a channel IP Channel Details Destination Actions Setup Channel Details To configure a channel click the Add IP button This will now add a black Channel IP service ready for configuration Channel Egra p Eg sa Por Eg Cr pinay traer pon Senice Type Ascensio Channel descriptions Each Channel has a number of configuration options that are described below Primary This is used to configure a channel as a primary of standby channel More information can be found on this in the chapter on failover IP Address The Virtual IP for the channel Subnet The Subnet mask for the virtual IP Port The port for the channel to listen on Service Name jetNEXU ALB K User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 34 of 107 jetNEXUS Makes Applications Fly Wee useful name to describe your service Service Type Method is the protocol There are currently 4 options
26. EXUS Makes Applications Fly Content Servers jesse lunes JetNEXS o a a oscar In the example below have added my 3 content servers to my load balanced channel Content servers Eisen Rune suns vor 9 1023496 LJ m 1003497 Lj a mowa You have now configured the Content server Details jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 38 of 107 JetNEXS Setup Actions The default options for Actions allow you to select several different options these are detailed below Actions Connection Va Update Least Connections Managed Caching Strategy OFF ss ES EO EC EO ES Enable Connection Pool Connection pool Siz Action descriptions Server Monitoring There are several different monitoring types are defaults are below Ping ICMP Echo TCP Connection 200 OK Load Balancing Policy There are several different Load Balancing methods they are listed below they will be covered more detail later in this manu Least Connections Cookie Based Round Robin IP Based IP List Based Classic ASP Session Cookie ASP NET Session Cookie JSP Session Cookie JAX WS Session Cookie PHP Session Cookie LB ALB X User jetNEXUS 1 jetNEXUS Limited All Rights Res Page 39 of 107 JetNEX S Vales Applications Fiv Ud Connectivity There are
27. Send E Mail Events To E Mail Return E Mail Address Host address Port Send Timeout Use Authentication Security Mail Server Account Name Mail Server Password jetNEXUS ALB ALB X User Mar ea John smithemacom or ohn smeh jonmamthemyrolcom gt are means no cange e g support jetNEXUS com support jetNEXUS com IP or FQDN 25 2 If required by your mail server If required by your mail server username password ual Copyright 2011 jetNEXUS Limited All Rights Page 96 of 107 JetNEXS jetNEXUS Makes Applications Fly Enabled notifications and event descriptions in mail r P Serie Sarica P servee Serice stopped r hannelnatice Channel eared Cannel Channel stopped Content server notice Server contacted Content server Server not conta r assu T Sarver not contactable Group noxfeasone together Grouped mai description Fv Sand grouped mai avery 30 minutes F osts All Values below can be modified you meet your specific message requirements IP Service notice Service Alert Message title IP Service alert Sei Stopped Alert Channel notice Channel Alert Message title Channel alert Channel Stopped Alert Content server notice Content Message title Content server alert Channel Alert flightPATH FlightPATH Message title Group notifications together All alerts into a single e mail alert Gro
28. Us JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 8 of 107 JetNEXS jetNEXUS Makes Applications Fly prd jetNEXUS Introduction Scope The aim of this document is to provide a user manual and deployment overview for the jetNEXUS Accelerating Load balancer ALB Accelerating Load balancer Extreme ALB X Accelerating Load balancer Virtual Appliance ALB VA and Accelerating Load balancer Extreme Virtual Appliance ALB X VA Products If you have any questions about this guide or require any assistance during your setup please do not hesitate to contact support jetnexus com or call us on 0870 382 5529 where one of our dedicated support team will be able to help with any questions or queries you have What is the jetNEXUS ALB The jetNEXUS Accelerating Load balancer ALB is an advanced load balancing and traffic management solution that enables clients to create and deliver fast resilient and scalable online services The ALB ALB X amp ALB VA are all Application Delivery Controllers ADC sometimes referred to as a next generation load balancer The ALB X is feature rich delivering the advanced functionality you would expect from market leading solution at cost effective price point Focusing on the features that make the biggest difference to end user experience the ALB X combines Layer 7 Load Balancing Compression SSL Offload SSL Re encryption and Content Caching in o
29. an SNTP time server If jetNEXUS ALB has a gateway that also provides a DNS facility a URL works too In most circumstances it is better to resolve the DNS name into an IP Address and use it instead Update time Update at is the time of day that jetNEXUS ALB contacts the SNTP time server This controls what times of day the time corrections will happen Update period Update period states how often jetNEXUS ALB should consult the SNTP time server This might be 24 6 or 1 as required Fractional hours are valid too if needed NTP method The SNTP time server protocol standard is selected using the drop down box Supported settings are NTP vi Over TCP ja Public SNTP v4 NTP vi Over NNTP vi Over UDP You will see time corrections carried out in the System Log JetNEXUS ALB logs both successful and unsuccessful attempts Successful updates also show any time discrepancy LB ALB X User Manual Page 99 of 107 jetNEXUS ight 2011 jetNEXUS Limited All Rights Res JetNEXS jetNEXUS Makes Applications Fly Wee E The ping tool can be used to check network connectivity Detais Ping IP Address is where to enter the IP Address of the device to contact with an echo test Click Ping to perform the echo test Four attempts are made to contact the device The text area displays the results on completion jetNEXUS ALB ALB X User ight 2011 jetNEXUS Limite
30. apply the new configuration to the appliance Password usen password New Password Confirm Password Once you apply the new configuration the new password is in effect The browser therefore challenges you for an appropriate username and password to access the page py Secure Shell Remote Connection is an option to allow SSH SSH Transport Layer Protocol access to jetNEXUS Console 2 M Friedl Provos and W A Simpson Diffie Hellman Group Exchange for the SSH Transport Layer Protocol draft ietf secsh dh group exchange 01 txt April 2001 work in progress material JetNEXUS ALB ALB X User M Page 88 of 107 jetNEXUS Makes Applications Fly Weser Acceleration and compression advanced configuration Using the Navigation bar on the left of the web interface to Advanced gt Pratocol gt HTTP this will open ttp WARNING Take extreme care when adjusting these settings as inappropriate settings can adversely affect the performance of ALB The ALB X has a powerful configurable compression engine HTTP Compression settings Thread Memor 128 Mesum Thread Merry KE 09009 cement memo pel T o to double Meus Comerassion SselBytes 200 Safe Compression Compress As You Go By Page Request a Initial Thread Memory Allocation The amount of memory each request received by jetNEXUS may initially all
31. backend server is available see service indication lights later in this manual Enabled This tick box allows you to enable or disable a backend server from the channel IP Address The IP Address of your backend content server Port The port that your backend content server is listening on Configuring a new Content server ALB X User Page 36 of 107 JetNEXUS AL ight 2011 jetNEXUS Limited All Rights jetNEXUS Makes Applications Fly content servers Boxster Eres Sue 1 E In this example we will configure the following Content server details Destination Connection Server Group Name Server Group Enabled Ticked IP Address 10 0 34 96 Port 83 Destination Acions Content Server Detas Content Server Group Sever Group fa jane Content Servers avs ier Cj I Adding additional Content servers To add additional content servers click on the Add New button to add a server Content Servers Eee Ee Tues You now add your additional content servers Content Servers Enos nee p Were ron m e gl I J Click on the Update button next to the Add Content server this enables the new content server jetNEXUS ALB ALB X User Manual Cop right 2011 jetNEXUS Limited All Rights Reserved Page 37 of 107 jetN
32. cache size represents the absolute upper boundary of the cache the desired cache size is intended as the optimum size that the cache should attempt to attain whenever an automatic or manual check on the cache size is made The gap between the maximum and desired cache size exists to accommodate the arrival and overlap of new content between periodic checks cache size for the purpose of trimming expired content Once again it may be more effective to accept the default value 30 MB and periodically review the size of the cache under Monitor Statistics for appropriate sizing Setting the desired and maximum cache sizes to the same figure will cause the cache to be trimmed with every request fetching new content into the cache There are conditions where this may be desirable but there will also be an impact on performance in that cache content is being shuffled in and out of the cache continuously Default Caching Time Life of content without an explicit expiry value The default caching time is the period content will be stored in the cache for items that don t have a no store directive but also have no explicit expiry time in the traffic header The field entry takes the form D HH MM so an entry of 1 00 00 the default means to store the item for one day 01 00 for one hour and 00 01 for one minute JetNEXUS ALB ALB X Use nual Copyright 2011 jetNE ed All Rights Res
33. cate from an IIS server Importing certificates from a Apache Web server Importing certificates from another jetNEXUS Accelerator Export Certificates to be used another jetNEXUS ALB or web Server Configure Listening Interfaces as SSL interfaces Configure content server for SSL jetNEXU ALB X User Manual ight jetNEXUS Limited All Rights Page 70 of 107 JetNEXS jetNEXUS Makes Applications Fly Weser Creating A Self Signed Certificate Using the Navigation bar on the left of the web interface go to Configure 551 Click on Create Certificate this will open the create certificate tab You will then be presented with the Create Certificate screen Create Certificate name Organzaton organzatonal unt Country a Doman Key Length Feroc cajs Local Certes Each field will need to be filled in a description of each field is detailed below Certificate Name unique name which will identify the certificate when it is created Avoid use of lt gt amp and all types of quotes Organization Organization information for the certificate Organizational Unit Add the appropriate information for the certificate City Locality Location information for the certificate State Province Location information for the certificate Country Location information for the certificate Domain Name Domain nam
34. client cookie to route traffic to the same back end server Again this is used when the client must go to the same back end server each time JetNEXUS ALB ALB X User Page 10 of 107 JetNEX S jetNEXUS Makes Applications Fly Classic ASP Session Cookie Active Server Pages ASP is a Microsoft server side technology With this option selected the ALB will maintain session persistence to the same server if an ASP cookie is detected and is found in its list of known cookies If a new ASP cookie is detected then it will be load balanced using the least connections algorithm ASP NET Session Cookie ASP NET is a Microsoft server side technology With this option selected the ALB will maintain session persistence to the same server if an ASP NET cookie is detected and is found in its list of known cookies If a new ASP NET cookie is detected then it will be load balanced using the least connections algorithm JSP Session Cookie Java Server Pages JSP is an Oracle server side technology With this option selected the ALB will maintain session persistence to the same server if a JSP cookie is detected and is found in its list of known cookies If a new JSP cookie is detected then it will be load balanced using the least connections algorithm JAX WS Session Cookie Java web services JAX WS is an Oracle server side technology With this option selected the ALB will maintain session persistence to the same server if a JAX WS cooki
35. content you d like to include in caching in the example above we have decided to cache all jpg images The Add condition will add whatever content you have selected in the Cache Content Selection Rulebase screen and update the conditions section for you jetNEXUS ALB ALB X User ight 2011 jetNEXUS Limited All Rights Page 62 of 107 JetNEXS Creating a Caching Rule To Set up Caching you will need to access the settings in the following location Configure cache This will open the Caching tab Cache Crete cache Rule cache contant selection Rulsbasos ide ASP rii Name Description Aaa Condition Conditions ja peg wages Cache foral rapes E Wes Rule Maw Rae Descpon Our first example rule will be called Cache Graphics and will restrict content to the known graphic types already shown in the dropdown list see below Create Cache Rule cache Content Seco ciel ATG roges pte sco Ceres Records 73 hos Condition Concitone fases aee fer el pss aes E Er Gaeta Grches Caer on Known rasne tyase E See ime gt Update Pressing the will add the Cache Graphics rulebase Our next example rule will be called apps in URL and will restrict caching to content whose text contains apps anywhere in the URL jetNEXUS LB ALB X User M 1 jetNEXUS Limi ed All Rights
36. ctions on a Listening Service IP and port Eth0 IP 10 0 34 66 Listening IP 10 0 34 100 Ports 80 amp 443 ALB then creates a connection of its own to a content server based on the load balancing policy Svr Web 1 Svr Web 2 Svr Web Svr Web 4 1003441 1003412 1003413 1003414 Page 28 of 107 JetNEXUS ALB ALB X User M 1 jetNEXUS Limited All Rights JetNEX 5 jetNEXUS Makes Applications Fly Multi network interface configuration Enabling the EthO interface and any another interface Eth1 Eth2 amp Eth3 etc The jetNEXUS devices can proxy the traffic between any of the new network interfaces This is suitable for larger scenarios where network segmentations between web services are needed jetNEXUS ALB accepts connections on a listening Channel The combination of IP address and port on any of the following interfaces EthO Eth1 Eth2 amp Eth3 and holds this information It then creates a connection of its own to a backend server based on a load balancing policy In a Multi Network configuration all traffic between the client and the jetNEXUS ALB can go over any interface you specify in your channel configuration as the listening IP All traffic between the jetNEXUS ALB and the content server s will go over whatever interface the content server s IP isin JetNEX S ACCELERATING Firewall P Web Traffic Is sent to the jetNEXUS ALB which is Listening on 192 168 100 100 for ports 80 amp 443 User
37. d The IEEE 802 3ad Dynamic link aggregation bonding mode Creates aggregation groups that share the same speed and duplex settings Utilizes all slaves in the active aggregator according to the 802 3ad specification Balance tld The Adaptive transmit load balancing bonding mode Provides channel bonding that does not require any special switch support The outgoing traffic is distributed according to the current load computed relative to the speed on each slave Incoming traffic is received by the current JetNEXUS Limited All Rights jetNEXU ALB X User Manual Copyright Page 24 of 107 JetNEX S jetNEXUS Makes Applications Fly slave If the receiving slave fails another slave takes over the MAC address of the failed receiving slave Balance alb The Adaptive load balancing bonding mode also includes balance tlb plus receive load balancing rib for IPVA traffic and does not require any special switch support The receive load balancing is achieved by ARP negotiation The bonding driver intercepts the ARP Replies sent by the local system on their way out and overwrites the source hardware address with the unique hardware address of one of the slaves in the bond such that different peers use different hardware addresses for the server Configure bonding Using the Navigation bar on the left of the web interface go to Setup Hardware this will open the Hardware t Bonding is broken down into two sec
38. d All Rights Page 100 of 107 JetNEXS jetNEXUS Makes Applications Fly TOSS SNMP Setting up the jetNEXUS ALB to provide a Simple Network Management Protocol Settings Site vijzc Enabled Stig eeeeesse SNMP Enabled 7 Dd PassPhrase Mew passphrase bark means no change Confirm passphrase SNMP v1 2c Enabled allows SNMP version 1 and version 2 access using the specified Community String The default community string is jetNEXUS SNMPV3 Enabled allows SNMP V3 for a single user admin with the default Passphrase jetNEXUS To change the Passphrase enter the old Passphrase the new Passphrase twice and click Update JetNEXUS ALB SNMP security settings are separate from other security settings on ALB Set them independently to values required by the management infrastructure 11 jetNEXUS Limited All Rights Reserved Page 101 of 107 jetNEXU ALB X User Manual Copyright JetNEXUS Makes Applications Fiy TORES Capture Capture is a useful debugging tool you may be asked to use this by the jetNEXUS support team when trying to troubleshoot an issue Bocuse Adapter adapter from where you want the trace Packets number of packets you want collected Duration duration in seconds of the trace Click the Generate button The file will be returned to the browser in a GZ form jetNEXUS ALB ALB X User Manual C
39. d All Rights Reserve Page 11 of 107 1 1 Makes Applications Fly jetNEXUS Benefits The ALB X negates the costly effects of data center server sprawl dramatically improving the performance and efficiency of web servers to ensure high application availability and service quality The ALB X represents the next generation in web load balancing by delivering advanced ADC features in a comprehensive yet cost effective solution that is flexible to deploy and easy to manage High Availability for your Mission Critical Business Applications The ALB is an essential network component key to guaranteeing server availability and delivering a reliable online service The ALB can be deployed in a high availability pair to enable fail over and remove any single point of failure The ALB X server health monitoring feature can detect and route around problem servers to eliminate downtime Advanced reporting and logging provides real time performance and availability stats for comprehensive monitoring and analysis Features such as dynamic data compression SSL offload connection management and content caching work to reduce server load and optimize application contents for superb performance The ALB X also features flightPATH a powerful scriptable Layer routing engine for the creation of traffic rules and intelligent service management jetNEXUS ALB Guarantee Service Delivery Accelerate Applications Non Stop Applica
40. dental or consequential damages including without limitation lost profits and loss of damage to goodwill whether suffered by recipient or third party or from any action or inaction whether or not negligent in the compiling or in delivering or communicating or publishing this document Microsoft Windows is a registered trademark of Microsoft Corporation in the United States and other countries All other trademarks and service marks are the property of their respective owners JetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 2 of 107 jetNEXUS Makes Applications Fly Table of Contents jetNEXUS Introduction 1 Scope 2 What is jetNEXUS 3 How does Load Balancing Work 4 What are Load Balancing Methods Strategies 5 What is an Application Delivery Controller ADC 6 jetNEXUS Benefits jetNEXUS Configuration 1 Basic Configuration and first boot i jet NEXUS Discovery ii Using jetNEXUS Discovery Accessing the web interface 2 Getting started i Setting the IP Address 1 Setting the Default Route iii Setting Static Route iv Setting the Network Speed Advanced Networking 1 Bonding a Whatis bonding b Configure bonding c Bonding modes i Balance RR Active Backup Balance XOR Broadcast v 802 3ad Balance tld Balance alb d Adding an interface to a bond 2 a Whatisa VLAN b Configure a VLAN ALB Impleme
41. directly to the client Content server 10 0 34 11 80 loopback 10 034 100 Web Server Transparency Transparency is suitable for layer 4 load balancing only Caching and Compression are not available when transparency is enabled Transparency is used when you need the source address of the client making the request How it works e Client sends a request to the jetNEXUS Request is received by jetNEXUS JetNexus 2011 jetNEXUS Limited All Rights Page 32 of 107 JetNEXS jetNEXUS Makes Applications Fly Wee MAC changed Request routed to content servers Response sent to jetNEXUS e jetNEXUS routes the response to the client Configuration Content servers need to be configured to use the jet NEXUS as their default gateway Gateway Gateway mode allows you to route all traffic through the jetNEXUS this allows traffic from the content servers to be routed via the jetNEXUS to other networks via the interfaces on the jetNEXUS unit Using the device as a gateway device for content servers should be used when running in multi interface mode How it works Client sends a request to the jetNEXUS Request is received by jetNEXUS Request sent to content servers Response sent to jetNEXUS jetNEXUS routes the response to the client Configuration Content servers need to be configured to use the jet NEXUS as their default gateway jetNEXUS 1 jetNEXUS Limited All Rights Res Page 3
42. drag and drop it back to the rule inventory jetNEXUS Limited All Rights Reserved Page 56 of 107 JetNEXUS ALB ALB X User Manual Copyright JetNEX S jetNEXUS Makes Applications Fiy pera Caching Using the Navigation bar on the left of the web interface go to Configure Cache This will open Cache tab allowing you to access the caching configuration screen How jetNEXUS Caching Works Upon receipt of a request the cache is searched for the requested page The request is forwarded to a local content server group if the page cannot be found in the cache If it is in cache but expired a revalidation request is used with the most recent If Modified Since value If the cache entry is OK i e if the content matches If Modified local 304 Not Modified is returned otherwise a cache local full response is sent Note that the cache stores only uncompressed content as page acceleration is performed after the page is taken from the cache Upon filling the cache the oldest least recently used content is retired from cache in order to make room for the new content When the cache size meets the maximum size or when the timer triggers a check or when the check cache button is clicked a cache check is performed Whilst the size of the cache is greater than the desired content is removed from the cache as described above Once the desired size is reached the cache is left to grow naturally
43. dress Security certificate problems may indicate an attempt tc fool you cr intercept any data you send to the We recommend that you close this webpage and do not continue to this website Cic here to cose this webpage Continue to this website not recommended More information You will be challenged for a username and password Username admin Password jetnexus jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 17 of 107 JetNEXUS Makes Applications Once you have logged in you will be presented with the default jetNEXUS screen TTTTT gre mum e Using the Naviga jetNEXUS ALB bar on the left you be able to access all the options to configure your The Dashboard provides Information on Disk space Memory Utilization and CPU Performance jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 18 of 107 JetNEXS jetNEXUS Makes Applications Fly Wee Getting Started Setting the IP address The first item to configure when setting up jetNEXUS ALB is the basic networking Using the Navigation bar on the left of the web interface go to Setup gt Appliance This will TT Appliance open the tab allowing you to set the IP Address for the unit You can now set the network properties Adapter Details essences Rursus w adcvess subnet ask 79 EJ ase DEI J D
44. e eaten Acum remos 7753 vite Sein Source Condition Description Trample Host This is the host extracted from the URL ww mywebsite com or 192 168 1 1 Tanguage This is the Language extracted from the language This condition will produce a dropdown with HTTP header a list of Languages Path This is the path of the website mywebsite index asp Cookie The isthe name ofa cookie Query This e the name and Value of a Query as such ican Best jetNEXUS Where the Match is Best either accept the query name or a value also and the Value is jetNEXUS Query The whole query string after the char BestzjetNEXUSB Name String Method This is drop down of HTTP methods This is a dropdown that includes GET POST ete JetNEXUS ALB ALB X User Manual Cop All Rights Reserved Page 52 of 107 NEXUS Lim jetNEXUS Makes Applications Fly JetNEXLS Version This is the HTTP version HITP L0 OR HTTP L 1 Header This can be any HTTP Header Referrer User Agent From Date POST POST request method Check data being uploaded to a website Actions New actions can be added by clicking Add New button Condition Evaluation Egaasnew Eg Remove Action The action is the task or tasks that are enabled once the rule is fired All actions are fired Actions Data Rewrite Path This will allow you to redirect the request
45. e information for the certificate Key Length JetNEXUS ALB ALB X User ed All Rights Page 71 of 107 1 jetNEXUS Limi JetNEX 5 jetNEXUS Makes Applications Fly Key Length indicates the length of the RSA key which will be used to generate the certificate Period Days Period is only required for Self Signed certificates and indicates the duration of the certificate Once the certificate information has been entered to generate the self signed certificate click Create Local Certificate A completed self signed certificate is below roto Certificate name Grooncaten Organizational Uk StatefProvnee county Doran Name Key Length Period dae SeSignestsample Tenes Let Techical Support pe Berkshire Unted Khnodam uw jatnenuscom loca EI The self signed certificate is then ready to be assigned to SSL listening interface jetNEXUS ALB ALB X User ight 2 1 jetNEXUS Limited All Rights Page 72 of 107 JetNEX 5 jetNEXUS Makes Applications Fly Creating Certificate Requests Using the Navigation bar on the left of the web interface go to Configure gt SSL Click on E Create Certificate this will open the create certificate tab Once the certificate request information has been entered to generate the certificate request click Create Certificate Request Crate Certificate cons Name
46. e is detected and is found in its list of known cookies If a new JAX WS cookie is detected then it will be load balanced using the least connections algorithm PHP Session Cookie Personal Home Page PHP is an open source server side technology With this option selected the ALB will maintain session persistence to the same server if a PHP cookie detected What is an Application Delivery Controller ADC ADC s are designed for applications and improve the performance of Web based and related applications by providing a suite of services at the network and application layers Advanced ADC s become actively involved in the delivery of the application and provides sophisticated capabilities as opposed to Server load balancing solutions that typically perform a basic set of functions including load balancing basic health checks and Secure Sockets Layer SSL offload processing Advanced platform ADCs provide the basic Server Load Balancing functionality and additionally provide support for real time protocol manipulation for example Transmission Control Protocol connection management and HTML optimization data compression network address translation quality of service QOS DOS protection SSL Offload and resiliency failover These devices are being enhanced by the addition of new protocol intelligence and new services such as content transformation and transaction assurance JetNEXUS ALB ALB X User Manual imite
47. e text box on the right hand side of the screen Finally to install the certificate click 581 jetNEXU ALB X User Manual Copyright jetNEXUS Limited All Rights Page 74 of 107 JetNEX S jetNEXUS Makes Applications Fly Certificate Management Using the Navigation bar on the left of the web interface go to Configure gt SSL and select Manage Certificates This will open the manage certificate tab You can manage your certificates from this screen Manage Certificate Select Certificate to manage SelfSignedExample Pending To install a certfate paste SeffsignadExample Panding cettifcate text below amp cick Instal SeffsignedExarmplel Pending You have 4 options for each certificate Cg Renew Show delete instal Renew The Renew button performs the same functions as the Create Local Certificate and Create Certificate Request buttons on the Certificate Creation screen If a self signed certificate has been selected when the Renew button is clicked the self signed certificate will be created with the same information supplied on the Certificate Creation screen If a certificate request or installed trusted certificate is selected the certificate request will be recreated and displayed in a popup window Show The Show button will display the details of the selected self signed certificate pending certificate request or installed tr
48. erved Page 59 of 107 JetNEX S jetNEXUS Makes Applications Fly pod Cacheable HTTP Response Codes HTTP responses that will be cached This field should be edited with caution as the most common cacheable response codes are already listed 200 Standard response for successful HTTP requests 203 Headers are not definitive but are gathered from a local or a 3 party copy 301 The requested resource has been assigned a new permanent URL 304 Not modified since the last request and the locally cached copy should be used instead 410 Resource is no longer available at the server and no forwarding address is known Cache Checking Timer D HH MM Interval between cache trim operation Cache Fill Count Count of 3045 for a cached item before re fetching LB ALB X User jetNEXUS 1 jetNEXUS Limited All Rights Page 60 of 107 JetNEX S JetNEXUS Makes Applications Fy porn Adding a Caching Rule The Configure Cache screen also supports the creation of custom rule bases that can later be applied against one or more domain names being managed by the cache more on this in the last part of this section Create cache Rule cache content sekecon Rulevases ida il reca sn sacre Tem eris Ws tere Hal Conon Conon ae aces mort ager pa incide gic ang Press the 3 499e5776 to add a rule base and series of fields are displayed Create Cache Rule Cache coment Seco mise
49. es GET POST etc Version This is the HTTP version HITP LO OR 1 1 Header This can be any HTTP Header Referrer User Agent From Date POST POST request method Check data being uploaded to a website om Response Body A user defined string in the response body Response Code The http code for the response 200 OK 304 Not Modified Sense The sense allows you to create a positive match or a negative match Does Value is true Does not Value is not true Check This sets the condition for the rule being fired Chek Description Example Exist Check that the Match Item is present Stat Check that the Match starts with the value in specified in Check Host starts with www the Value column Value www wow JetNEXUS com TRUE jetNEXUS com False End Check that the Match Ends with the value in specifiedin Check Host Ends with com the Value column Value com wow JetNEXUS com TRUE wow jetNEXUS co uk False Contain Checks any part of the Match for the Value Check Host Contains jetNEXUS JetNEXUS ALB ALB X User Manual igh Page 50 of 107 jetNEXUS Makes Applications Fly JetNEX 5 Value jetNEXUS www jet NEXUS com TRUE woww jet NEXUS co uk TRUE wow mywebsite com FALSE Equal Check the Mach for an exact match Check Host Equals jet NEXUS Value jetNEXUS www jetNEXUS com FALSE jetNEXUS TRUE
50. figuration file using the second upload box called Upload New Software The version of software currently running is shown for referenc Software Software Vorsion s 18 0 Build 1410 3m0759 upload software Configuring Logging The ALB supports full W3C logging This can be configured under Configure logging This will Logging open the tab The W3C drop down allows you to set the Logging Logging Loves wncinmpmo Tine a w3 Loggng FowardedForAddesrand Pot il Show sesters n eHDUS Headers On E By default you should use Full or Site Use Diagnostic only if required to do so by a jetNEXUS engineer as it puts additional load on the device and consumes more file space None None Brief Ful Ste Diagnostic The jetNEXUS w3C logging allows you to choose what you would like as the client source IP If there is a proxy up stream of the device then you may wish to choose the X Forwarded For Address jetNEXU ALB X User M ight jetNEXUS Limited All Rights Page 86 of 107 jetNEXUS Makes Applications Fly pod Logging Levels W3C Logging None jetNEXUS w3c Logging Forwarded For Address and Port Show Statistics in jetNEXUS Headers Clent s Network Address and Port Client s Network Address Forwarded For Address and Port Forwarded For Address Remote storage is a facility whereby ALB copies w3c log files to a SMB cifs network share Remo
51. h the IP address e g the primary is powered down or it loses contact with all content servers associated with the listening interface a secondary jetNEXUS ALB will take over Configuring more than one content server for a listening interface causes jetNEXUS ALB to perform load balancing of requests across the content servers The policy used is Least Connections This places each request on the content server with the least outstanding requests If jetNEXUS ALB is unable to contact a content server jetNEXUS ALB removes the content server from the set placing requests on the remainder If jetNEXUS ALB loses contact with all content servers it removes support for that listening terface In a fail over configuration another jetNEXUS ALB will step into the breach JetNEXUS ALB ALB X User M Page 83 of 107 JetNEXS jetNEXUS Makes Applications Fiy TASS Failover status lights The coloured lights to the left of the listening interface shows the status Application server and or channel are providing service e Secondary channel is assessing primary service state Listening interface is inactive but in fail over standby ready to support it You have now configured a High Availability JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 84 of 107 jetNEXUS Makes Applications Fly Wess ALB Maintenance Backing up the ALB Using the Navigation bar on t
52. hain Pragma no cache Content Type The mime type of the of the request lused with POST and PUT requests Content Type application x www form urlencoded Content Encoding The type of encoding used on the data See HTTP compression Content Encoding gzip last Modified The last modified date for the requested object in REC 2822 format last Miodified Tue 15 Nov 1994 12 45 26 GMT Accept Ranges What partial content range types this server supports Accept Ranges bytes jetNEXUS 55 of 107 JetNEX S jetNEXUS Makes Applications Fly How do apply flightPATH rules flightPATH rules are designed to manipulate HTTP traffic as such the option for flightPATH is not visible for non HTTP protocols To enable a flightPATH rule go to Setup IP Services page This will open the IP Service MIL flightPATH rules can be applied in the IP services screen under Action ea Selected Flightpatns Available Flightpatns mea gt The list of available rules is on the right and the current rules in use are on the left To add a new rule drag and drop the rule into position Selected Flightpaths Available Flightpaths f tineam 1 Sse 7 The order for execution is important and will start with the top rule being executed fist change the order simple drag and drop into the correct location To remove a rule simply
53. he left of the web interface go to Advanced gt Update Software This will open the 22 VPdate Software 9 The current configuration can be downloaded and saved to your local machine using the Configuration Curran Configuration Upload Configuration gt You will then be asked where to save the files Do you want to open or save this p oporren 5 Tie Goran setings 5768 Fon 10 10 24 om IF stays 3 belare operira hs bpe Wib fes ian the emet can be usah sore fs can par cour I oude no sues deret epen ce Restoring the ALB To restore a full configuration simply browse to the file under Advanced Update Software E Update Software This will open the update software tab To restore a full configuration simply browse to the file under Upload new configuration browse and find your configuration and click go Configuration Downbad curent Configuration Unload New configuration Browse gt JetNEXUS ALB ALB X User Manual Copyright jetNEXUS Limited All Rights Reserved Page 85 of 107 jetNEXUS Makes Applications Fly JetNEX 5 This will cause a brief software restart There are also configuration updates that can be uploaded in the same way Updating the Software All software upgrades for the ALB can be performed via the web interface They are performed in the same way as uploading a new con
54. ia its default gateway The jetNEXUS also acts as a proxy based load balancer the request from the web server can be returned to the load balancer and manipulated before being sent back to the user This manipulation can involve content substitution or compression What are Load Balancing Methods Strategies Typically a load balancing method or strategy is used to decide haw the load balancer chooses where to send the request Below are the methods used by jetNEXUS ALB Least Connections The load balancer will keep track of the number of connections a back end server has and send the next request to the server with the least connections Round Robin The simplest method each back end server takes a turn IP Based In this situation the clients IP address is used to select which back end server will receive the request IP session persistence runs at layer 4 as such it can be used when load balancing non HTTP protocols This method is useful for internal networks where the network topology is known and you can be confident that there are no super proxies upstream If this is the case the all the requests will look like they are coming from one client and as such the load would be uneven Cookie Based This is the most popular persistence method for HTTP In this situation least connections load balancing is used for each first request A cookie is inserted into the headers of the first http response Thereafter jetNEXUS ALB uses the
55. ics Serena 1081005180 stopp pray on 101100510 anon Using the Navigation bar on the left of the web interface go to Monitor Statistics this will h Statistics open the tab Default statistics screen Compression Statistic Content Compression to Date 0 Throughput Berore Compression Throughput Acer Compression Overall Compression to Date Throughput Before Compression 0 Throughout After Compression Throughput From Cache Hits and Connection Overall Hits Counted Total Connections Peak Connections Caching Content Caching Hits Fram cache 0 0 From Server E Cache Contents O entries Hardware Disk Usage Memory Usage CPU Usage Current values Total 0 0 connections sec cerrent connections 2 246 15 7MB of 491 5MB 0 The Content Compression to Date percentage is the amount by which jetNEXUS ALB has reduced compressible content e g Text HTML Style sheets etc A higher figure indicates better compression rates JetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limi ed All Rights Reserved Page 93 of 107 JetNEX S JetNEXUS Makes Applications The Throughput before compression figure shows the number of bytes that WOULD have been transmitted if jetNEXUS had not compressed the data The Throughput after Compression figure show the ACTUAL number of bytes transmitted The Overall Compression to Date perce
56. icy On ALB 1 we have ticked the Primary box on the following channel making this the Primary unit Channel Detais Ace rannen Eta Pot chanel a uci Primary Enabled IP Address Sublet Mask Port Service Hame Service Max Coane E ry 2502000 00 HAEST hesent H On ALB 2 we have not ticked the Primary box on the same channel making this unit the Failover Channel Detais Ees mannst on Eg Revove Grove Primary iss Enabled IPAddress Sublet Mask Por Service tiame Servico Tope lim TM 10024100 26625600 00 WATEST Accelerate 10000 jetNEXUS ALB ALB X User right 2011 jetNEXUS Limited All Rights Page 82 of 107 JetNEX S jetNEXUS Makes Applications Fly Failover Configuration To setup load balancing on a channel click Setup IP Services This will open the IP Service MELLE A new tick box to enable this unit as the Primary box is now shown on each channel click this box and then update channel pata Unete Primary Status Enabied IP Address Sublet Mask Port Service Name Service Type Max Canne H e 1003410 25526900 80 WATES Actes 10000 This unit is now the primary ALB on this Channel Different jetNEXUS ALB s can be primary on different IP addresses See diagram above If the primary jetNEXUS ALB is unable to support any of the listening interfaces associated wit
57. ificate to be exported using the Certificate Name drop down Export Certificate Certficate tame The supplied Password will be required when the certificate is imported to another jetNEXUS ALB or to an Apache or IIS web server The password must be secure but one you are able to remember this password should never be sent with the PFX file Click Export to export the certificate you will then be asked where to save the file ducsos ter rera xchange 1195 we se JE V Anan aik beles cornea oco ametis on toy JetNEXUS ALB ALB X User Page 77 of 107 jetNEXUS Makes Applications Fly Configuring an SSL Listening Interface JetNEX S Using the Navigation bar on the left of the web interface go to Setup Services page This will open the To enable SSL termination select the Channel IP you wish to enable your SSL certificate on Then click on the Actions tab Channeli etate jacere imencd IPAddress Sublet ask Port Name Service Type Max Connect 7 Acer 10000 o masse asasan 4 votes rt HT 10000 Actions x Sarver Montorng Load Babreng Poly Laast Connectors Selec Caching rue By Cannel Select SL Na SSL Erabi connacton Palo Connection pool See 2000 The li
58. ing HTTP S content and requests As well as using simple string matches such as Starts with Ends With etc For more complete control powerful Perl compatible regular expressions can be implemented addition custom variables can be created and used in the Action enabling many different possibilities Due to the configurable nature of flightPATH the options are infinite but some common uses are as follows ation firewalling and Secu Block unwanted IP s Force user to HTTPs for specific or all content Block or redirect spiders Prevent and alert cross site scripting Prevent and alert SQL injection Hide internal directory structure Rewrite cookies Secure directory for particular users Features Redirect users based on path Provide Single sign on across multiple system Segment users bases on User ID or Cookie Add headers for SSL offload Language detection Rewrite user request Fix broken URL s Prevent directory access browsing Send spiders different content LB ALB X User M jetNEXUS 1 jetNEXUS Limited All Rights Res Page 47 of 107 JetNEXS How do build a flightPATH rule A flight path rule consists of conditions and actions Multiple conditions can be added and are always added together To add a new rule click the Add New button on Details this enables you to give the flightPATH rule a name and also a Description Desenpton Multiple actions can als
59. into the Current Exclusions fields for file or files that not to be compresse Global Compression Exclusions Exess a In the example above all JavaScript files in the exchweb controls folder will be excluded from compression ed All Rights Page 91 of 107 jetNEXUS ALB ALB X User ight 2011 jetNEXUS limi etl JetNEXUS Makes Applications Fiy po Monitoring Using the Navigation bar on the left of the web interface click on the button this will open the amp Dashboard tap Dashboard rr Servesen 102 0051 20 spot arrea ox Tarea Sarve on 109 100 120 aed x p Service an 1081005180 spes pray petet 1134 Aor z011 Saros on 10 10 51 80 stania Disk Space Gives an indication on how much disk space is being used by the jetNEXUS ALB Memory Indication Bar Gives an indication on how much system memory the jetNEXUS ALB is using CPU Indication Bar Gives an indication of the current CPU load on the jetNEXUS ALB jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 92 of 107 jetNEXUS Makes Applications Fly Events JetNEXS Under the graphics is a rolling log the highlight of the system log Information such as content server coming on and off line and services starting and stopping are displayed retta tar oe aprzen sanoa aprann masosaa Statist
60. ion can be installed onto a desktop and will scan the local network for jetNEXUS devices Once found essential information such as an initial management IP address can be easily assigned How to use Discovery Copy the jetNEXUS application onto your desktop and run the installation After the installation is complete double click on the Discovery Icon to launch the jetNEXUS discovery application inDiscover_v3_S exe jetNEXU rator Di jetNEXU jetNEXU ALB X User M jetNEXUS Limited All Rights Page 13 of 107 JetNEXLS jetNEXUS Makes Applications Fly The jetNEXUS Accelerating Load Balancer Discovery will then open showing you a list of jetNEXUS appliances in your network EE ageuu GDC2SBDSAAF 27374 000 22 27375 DDC2SFSDRS3 27375 Connect g Reboot Asean alo 0 0 10001 estaba 00 ALENA Factory Defaults Poner OFF Copyright 05 2009 je NEXUS ltd Al Rights Reserved a Right click on the on device you would like to configure and select configure A message box like the one below will then pop up Configure o 92 ALE VAT Mac Address 00 02234 9292 IP Address 192168100100 Network Mask 255 255 2550 Config Pot 27376 Default Port Gateway Server Ref e NEXUS ALE Release Cade Cancel jJetNEXUS ALB ALB X User Mani 1 jetNEXUS Limited Rights Ri
61. ions Fly Failover configuration Using the Navigation bar on the left of the web interface go to Setup Appliance page this will open the Appliance For fail over operation you will need to configure multiple jetNEXUS ALB s with the same listening interface information Each additional unit s configuration will need to match please contact support jetNEXUS com if you would like some guidance during this process Why use failover Failover is used for high availability of your application or web service and also providing hardware redundancy You have 2 main ways to configure jetNEXUS failover Active Passive Using 2 ALB s which work as an Active Passive cluster where you have 1 unit as Primary serving all connections and 1 unit as a Secondary Slave waiting to take the incoming connections if the primary unit fail Active Active Using 2 ALB s which work as an Active Active cluster where both units are able to serve different Channel IP s and become the secondary for each service not marked as primary on that unit Enabling failover You will need to first tick the enable the failover function on the ALB click update Failover Enabled Failover Enabled 7 Failover Timer mSecs 10000 Complete this step on each unit you wish to be part of the cluster jetNEXUS ALB ALB X User M ight 2011 jetNEXUS Limited All Rights Page 80 of 107 JetNEX 5 jetNEXUS Makes Applications Fly prd Failover
62. load the web admin in a browser Fate Lr There is a problem with this website s security certificate Tris website wa The security cercate presented by tis website was issued for a difieren 1 Security certificate problem ste an attempt to fool you or intorc We recommend that you close this webpage and do not continue Ir dose this webpage Continue o this website not recommenced More information Please go to page 17 to continue the setup of your jetNEXUS ALB via the Graphical Interface If you have not chosen to setup your jetNEXUS ALB via jetNEXUS Discovery then please continue to the Basic Configuration web interface jetNEXUS ALB ALB X User Manual Cop right 2011 jetNEXUS Limited All Rights Reserved Page 16 of 107 JetNEXUS Makes Applications Basic Configuration web interface The default web interface can be access via the following IP if it has not been able to contact a DHCP server htt 192 168 100 100 27376 Ge Fe 1p 10 0 94 66cm z Qo There is a problem with thiswebsite s security cerificate The security certificata presented by this website was not issued by a trusted certificate authority The security certificate presented by this website has expired or is not yet valid The security certificate presented by this website was issued for a different websie s ad
63. ne comprehensive solution Features such as dynamic data compression SSL offload connection management and content caching work to reduce server load and optimize application contents for superb performance The ALB X is a plug and play solution available in a variety of formats The GUI is intuitive with drag and drop functionality and SOAP API for easy management The ALB X also features flightPATH a powerful scriptable Layer routing engine for the creation of traffic rules and intelligent service management JetNEXUS ALB ALB X User Page 9 of 107 JetNEXS JetNEXUS Makes Applications Fly How does Load Balancing Work The basic principle is that network traffic is sent to a shared IP jetNEXUS call this the Channel IP In some cased you may know this as a Virtual IP VIP or listening IP This Channel IP is address that it attached to the jetNEXUS Once the jetNEXUS receives a request on this Channel IP it will need to make a decision on where to send it This decision is normally controlled by a load balancing method strategy a Server health check or in the case of a next generation device a rule set The request is then sent to the appropriate server and the server will produce a response Depending on the type of Load Balancing method selected the response will be sent either back to the load balancer in the case of Layer 7 With a layer 4 service it is sent directly back to the end user normally v
64. ntage is the amount by which jet NEXUS has reduced all output from the server including the overhead of those items that it did not compress Note The jetNEXUS ALB counts compression statistics only for requests from browsers that accept compression If content caching is enabled ALB X then additional statistics will be displayed related to caching performance From Cache Number of byte and hits that are served from the jetNEXUS device From server Number of Bytes or hits that are served from the content servers Cache Contents Size and number of objects stored in the cache Hardware Disk Usage 4 Memory Usage 73 209 15 7 8 of 491 5MB CPU Usage The CPU usage Percentage indicates the loading on jetNEXUS Accelerator s CPU The Memory usage Percentage indicates how much memory jetNEXUS ALB is currently using Overall Hits Counted The number of requests received by jetNEXUS ALB whether or not content was compressed Hits and Connection Overall Hits counted Total Connections Peak Connections 0 0 connedtions sec D current connections jetNEXU jetNEXUS Limited All Rights Page 94 of 107 JetNEX S jetNEXUS Makes Applications Fly Logging Using the Navigation bar on the left of the web interface go to Monitor Logging this will open the El tossing As discussed earlier in the manual W3C Logging mode will start jetNEXUS ALB recording a W3C compatible log file of acti
65. ntation 1 Single Network Interface Configuration 2 Multiple Network Interface Configuration 3 Deploying single Network Interface Configuration 4 Deploying Multiple Network Interface Configuration JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 3 of 107 jetNEXUS Makes Applications Fly 5 jetNEXUS Connectivity Modes a Managed b Direct Server Return c Transparency d Gateway Configuring a Channel Service 1 Adding a Load Balanced Service 2 Setup Channel Details a Channel Descriptions b Configuring a new Channel 3 Setup Destination Details a Content Server Descriptions b Configuring a new Content Server c Adding additional Content servers 4 Setup Actions a Actions Descriptions 5 Adding another service to the same channel 6 Adding an additional Channel IP 7 Channel Status lights Server Health Monitoring 1 Server Health monitoring 2 Configuring server health Monitoring flightPATH 1 What is flightPATH 2 What can flightPATH do How can I access flightPATH 4 How do I build a flightPATH rule a Conditions b Sense Check d Evaluation Actions 5 How Do apply flightPATH rules JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 4 of 107 JetNEXS jetNEXUS Makes Applications Fly Caching 1 How jetNEXUS caching works 2 Parameters to configure overall cache behavio
66. o be created and are all executed if the conditions are met Variables can also be created to set values to be dynamically included on the action response flightPATH is preloaded with example rules for you to use these are listed below with the definitions Pre Built rules HTML Extension Fixes all htm requests to html Index html Force to use index html in requests to folders Close Folders Deny requests to folders Hide GCI BIN Hides cgi bin catalogue in requests to CGI scripts Log Spider Log spider requests of popular search engines Force HTTPS Force to use HTTPS for certain directory Media Stream Redirects Flash Media Stream to appropriate channel Swap HTTP to HTTPS Change any hardcoded HTTP to HTTPs Black out credit Cards Check that there are no credit cards in the response and if one is found blank it out jetNEXU 11 jetNEXUS Limited All Rights Reserved Page 48 of 107 ALB X User Manual Copyright JetNEX 5 jetNEXUS Makes Applications Fly SOS Content Expiry Add a sensible content expiry date to the page to reduce the number of requests and 304s Spoof Server Type Get the Server type and change it to something else Never send errors Client never gets any errors from your site Redirect on language Find the language code and redirect to the related country domain Google analytics Insert the code required by Google for the analytics Please change the value MYGOOGLECODE
67. ocate For most efficient performance this value should be set at a value just in excess of the largest uncompressed HTML file that the web servers are likely to send Maximum Thread Memory The maximum amount of memory that jet NEXUS ALB will allocate on one request For maximum performance jetNEXUS normally stores and compresses all content in memory If an exceptionally large content file exceeding this amount is processed The ALB will write to disk and compress the data there Increment Memory The amount of memory added to Initial Thread Memory Allocation when more is required The default setting is zero This means that the ALB will double the allocation when the data exceeds current allocation e g 128 Kb then 256 then 512 Kb etc up to the limit set by 1 jetNEXUS Limited All Rights Reserved Page 89 of 107 LB ALB X User Manual Cop jetNEXUS ight 2 JetNEX 5 jetNEXUS Makes Applications Fly Maximum Memory Usage per Thread This is efficient where the majority of pages are of a consistent size but there are occasional larger files e g Majority of pages are 128Kb or less but occasional responses are 1Mb in size In the scenario where there are large variable sized files it is more efficient to set a linear increment of a significant size e g Responses are 2 Mb t010 Mb in size an initial setting of 1Mb with increments of 1Mb would be more efficient Minimum Compression Size The size in bytes
68. opyright 2011 jetNEXUS Limited All Rights Reserved Page 102 of 107 jetNEXUS Makes Applications Fly Weser Restart To initiate the restart operation click Restart Restart Cid the Restart button to auickly stop and start essential jetNEXUS ALB services Warning This wil cause a brief break in current connections Software Version 3 18 0 Build 1420 3 0704 Note It can take up to 30 seconds for jet NEXUS ALB to restart Reboot To initiate a reboot click Reboot Note It can take a couple of minutes for the jetNEXUS to reboot Reboot Cli the Reboot button to re initialise all jetNEXUS ALB services Warning This will suspend your web site for about 2 minutes Power Off To initiate power off click Power Off Power off Click the Power off button to completely halt jetNEXUS ALB Warning this will suspend your web site and require hardware power on OFF Note To restart jetNEXUS a hardware power on will be required Note In the event of power supply loss jetNEXUS ALB will automatically power on again when power is reconnected jJetNEXUS ALB ALB X User ual Copyright 2011 jetNEXUS Limited All Rights Page 103 of 107 jetNEXUS Makes Applications Fly CLI Command line terface The command line interface is designed to only configure that basic settings of the so that the device and bring up and its web interface for further configuration In
69. ouble click on the IP Address box amp Subnet mask to enter the IP and subnet each section will turn blue allowing you to add IP and subnet information Subnet Mask 2552552550 Your changes will be highlighted with triangle above them then click on the update button to commit your changes Update Description Green Side jetNEXU ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Reserved Page 19 of 107 JetNEX S jetNEXUS Makes Applications Fly You also have to complete the Server Ref naming your appliance information Appliance Basic setup Server Ref ALB DNS Server Failover Enabled Failover Enabled 7 Failover Timer mSecs 10000 Advanced Network Setting Server Nagle Nagle 7 Once completed click on the Update button at the bottom right of the page prem jetNEXUS Example In this example we have configured the details below and we are using a one armed configuration Green side only Server Ref jetNEXUS Prod 1 IP Address 10 0 3466 Network Mask 255 255 0 0 DNS Server 10012 Here we have set the IP address and subnet mask Adapter 1P Address Subnet Mask Description ena D Gen Se jetNEXUS ALB ALB X User M 1 jet NEXUS Limited All Rights Reserved Page 20 of 107 JetNEXS jetNEXUS Makes Applications Fly po Now set the server ref appliance name and enter your DNS server Appliance
70. re 4 Configuring logging 5 Passwords and security Acceleration and Compression Advanced 1 Initial Thread memory Allocation 2 Maximum Thread memory 3 Increment Memory 4 Minimum compression size 5 Safe mode 6 Disable compression 7 Compress as you go a page request b ON c OFF 8 Compression exclusions JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 6 of 107 jetNEXUS Makes Applications Fly Monitoring JetNEXS 1 Dashboard a b c Disk space Memory indication bar CPU indication bar 2 Events 3 Statistics a mapan Default statistics screen From Cache From Server Cache contents The CPU Usage The memory usage Overall hits counted Logging 1 Download W3C Log 2 Download system log E mail Events 1 What can you set 2 Mail server SMTP setup 3 Services 4 Date b c d 5 Ping mpegs Data and time Ping SNMP Capture Restart Reboot Power off and time Time server URL Update time Update Period NTP Method 6 SNMP JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 7 of 107 jetNEXUS Makes Applications Fly SNMP v1 v2 b SNMP v3 C jetNEXUS ALB SNMP 7 Capture 8 Restart 9 Reboot 10 Power off 11 CLI Command Line Interface jetNEXUS Help JetNEX S 1 FAQ s 2 Troubleshooting 3 Contact
71. resk hore ene 200 7 You will need to fill in the Content Server Monitoring method screen with the following information Name Give the new method a useful name Description Give the new method a useful description Monitoring Method Type of Monitoring HTTP 200 ok or HTTP Response Page location The page location is the page that you would like to test from the ALB In the example below 1 have configured a health monitor using HTTP Response to check for a test asp page on my content servers JetNEXUS ALB ALB X User Manual 1 jetNEXUS Limited All Rights Res Page 44 of 107 jetNEXUS Makes Applications Fly Deals Monitoring Methed Page Location Aired Content The check bre coven err aap pane riP2000K stats Next we need to apply this new method to our service Go back to the IP services screen and select the channel service you want this monitor enabled on Example Channel service 10 0 34 100 listening on port 80 will modify the actions to now use the Health check monitor Once changed use the update button to enable this new monitor for the channel service channel Derails Gran renee 9 p p Pont E 1 C Em cy p 2 D You have now configured a new monitor jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited
72. ription Data From The emall address of the user makingthe From user example com request Accept Content Types that are acceptable Accepi text plain Accept Encoding Acceptable encodings Accept Encoding compress deflate sdch identity Accept Language Acceptable languages for response Accept Language en US User Agent The user agent string of the user agent User Agent Mozilla 5 0 compatible MSIE 9 0 Windows NT 6 1 WOW64 Trident S 0 Referer This is the address of the previous web page Referer http www jetnexus com from which a link to the currently requested page was followed Cookie an HTTP cookie previously sent by the server Cookie SVersion 1 Skin new with Set Cookie below Set Cookie an HTTP cookie Set Cookie UserID JohnDoe Max Age 3600 Authorisation Authentication credentials for HTTP authentication Authorization Basic QWxhZGRpbjpycGVulHNIc2FLZC Charge To Contains account information for the costs of the application of the method requested NEXUS Li All Rights Reserv Page 54 of 107 jetNEXUS Makes Applications Fly JetNEXLS TE Modified Since Allows a 304 Not Modified to be returned if content is unchanged Ie Modified Since Sat 28 Oct 1994 1943 31 GMT Pragma Implementation specific headers that may have various effects anywhere along the request response c
73. s e EE E sore Eg remove aca Desorimtion Add Conatton Conditions New ue New Rue Uesonaton Most caching rules can be added using the menu below the options are explained below cache content subse ide recy Directory Anything in the named directory anywhere on the site Fil Any file so named please include any file extension Anything starting The prefix to the URL including the leading character Anything ending The suffix to the URL including file name or trailing Anything containing A significant piece of the URL anywhere within it Exact match The exact URL of a piece of content jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 61 of 107 jetNEXUS Makes Applications Fly po All JPEG Images All GIF Images All Bitmap Images All PNG Images All HTML Pages Name Short name of the rule base Description Informative description of the rule base Add Conditi to add rule Conditions Added by Cache content selection tame Ada Condition Conditions rm Mew Rue Des Most rules are include rules but you can subsequently exclude subsets of content if required Leave include selected for the first rule cache content ulboses neue ALPEG traces a Em 3 Candia Condtans Alpes agis rapa nage E ees Then select the type of
74. several different modes that the ALB can run in the default is managed Managed Direct Server Return Transparency Gateway Caching Strategy There 3 caching strategy s these are listed below Select SSL Certificate Once you have added SSL Certificate then you will be able to see your certificate The default to NO SSL if you have no certificates Enable Connection pooling Maintains connections so they can be reused when future requests to the backend nodes are requested Connection Pool Size This is a size limit allowing you to modify the size of the pool Our new channel has been setup click on the update buttons in each section to save the new configuration Our Channel has now been configured correctly the Listening IP and Connection server IP now shown as Green Ear med Adress OAE Pot Seele Serie Type Comect 1 sasao ILS NI 0 CT Content Server Detals Content server croup name rup Content Servers Eae Egsemove Ratan E noue E You have now configured an IP Service ALB X User Page 40 of 107 jetNEXUS AL right 2011 jetNEXUS Limited All Rights JetNEX S jetNEXUS Makes Applications Fly Adding another service on the same channel To set up another service on the same IP address and a different port click the Add Port Channel Details aca Port Fata Channel
75. st of available SSL certificates will include user created self signed certificates installed trusted certificates and a default self signed certificate which is always present on the ALB No SSL No SSL default SelfSignedExample SelfSignedExemplet SefsgnedExampe2 __ Remember that when SSL offloading the listening port is typically 443 and the web server is not HTTPS i e typically HTTP port 80 jetNEXUS ALB ALB X User 1 jetNEXUS Limited All Rights Page 78 of 107 jetNEXUS Makes Applications Fly Configuring SSL for content servers This time we configure both the listening port and the content server port for 443 Within the Actions tab we must now configure the Content SSL section The drop down box will contain any certificates you have created or imported plus the default certificate installed on the jetNEXUS ALB Select the Any option for the ability accept any content server certificate Gestnaton Actions dne maemo RES toad ssaneng Pole Lea Gomecnt SL An SSL Any Connection poolSze dafautt salfsignedCertiicate lu D Caching Stetegy of O a Enable Connection Pooling You have now configured a SSL jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 79 of 107 JetNEX S jetNEXUS Makes Applicat
76. te Log Storage Remote Log storage Share Nave wac Dracon Pasewore back means no change Enter the details for the network share and tick the box to enable remote log storage Each half hour ALB checks for new log files and copies them to the network share Enter the details for the network share and tick the box to enable remote log storage Each half hour ALB checks for new log files and copies them to the network share Remote Log Storage Mi JP Address 10 034 110 Share Name Logfiles Directory abi Username admin Password blank means no change This must be a local machine user account o access the share and cannot be a domain username login Please observe restrictions on passwords for the remote log storage user Avoid use of lt gt amp and all types of quotes JetNEXUS ALB ALB X User Manual Cop Page 87 of 107 JetNEX S jetNEXUS Makes Applications Fly This account will need file create and file write access as well as read access to the directory This is true for both the SMB cifs share itself and the shared directory underneath on the host filing system Passwords and security The passwords and access to the SSH shell can be configured under Configure gt Security This Security will open the tab To change the password for the default Admin user enter the old password and new password twice Then click Update to
77. ted All Rights Reserved Page 58 of 107 jetNEXUS Makes Applications Fly Maximum Cache Size MB Maximum RAM that the cache can consume The jetNEXUS Cache is an in memory cache that is also periodically backed onto hard disk to maintain cache persistence after restarts reboots and shutdowns This means that the maximum cache size must fit within the memory footprint of the appliance rather than disk space and should be no more than half of available memory Recent jetNEXUS ALBs are equipped with 2GB of RAM while older models are fitted with 1GB For 1GB of RAM the cache size should be no more than 512MB while appliances with 2GB of RAM should have a cache size no larger than 1GB Increasing the cache size beyond this limit could adversely affect page acceleration if the compressed content is large so care must be exercised Calculating the best cache size for your site s will obviously depend on the amount of cacheable content you have but you may find it equally effective to start with the default cache size 50 A periodic review of the stats for caching under Monitor gt Statistics where the cache contents are described in terms of bytes used and percentage filled will then help you decide whether to reduce or expand the maximum cache size Be aware that this value is also complemented by a desired cache size see below Desired Cache Size MB Optimum RAM that the cache will be trimmed to While the maximum
78. the content servers recycling these connections as fast as possible to service client requests Enable connection pooling To access the pooling select the Channel IP you wish to modify and click on actions mSmSe an Destnaton Acbons Tick the Enable connection pooling box and enter the pool size which is normally set to 2000 les Enable Connection Pooling IZ Connection pool Size 2000 Once the simultaneous requests on each server reach the pool size the connections are capped Additional client requests will use the next free connection The content servers will service requests quickly leaving ALB to maintain scalability on the client side You have now configured connection pooling LB ALB X User Page 69 of 107 jetNexus 1 jetNEXUS Limited All Rights JetNEXLS jetNEXUS Makes Applications Fly po SSL Offload and termination What can jetNEXUS do with SSL jetNEXUS ALB has the ability to offload the SSL encryption and decryption work load from your backend servers and also becoming the termination point for your SSL certificates jetNEXUS also has the ability to re encrypt traffic to the back end content servers for more secure environments 551 Tasks that can be completed on the jetNEXUS ALB Create Self Signed Certificates Create Certificate Requests for Certificate Authorities Install Trusted Certificates supplied by a Certificate Authority Importing certifi
79. tion Availability Increase Network Resiliency Implement Traffic Routing Rules Improve End User Experience Reduce Bandwidth Consumption For Reliable Scalable Services jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 12 of 107 NEXUS jetNEXUS Makes Applications Fly jetNEXUS Configuration Basic Configuration and First boot On first boot jetNEXUS will boot and try to obtain an IP address via DHCP If there is no DHCP server present it will boot with its default IP of 192 168 100 100 on subsequent boots the DHCP client then disabled The simplest way to initially configure the ALB X is to use the jetNEXUS Discovery windows application The jetNEXUS discovery application will scan the local network looking for ALB s and allow you to perform some basic configuration such as set a management IP default gateway etc If you are implementing into a subnet where there is no DHCP and you are not be able to contact it using jetNEXUS discovery due to network restrictions or the fact that the network is secure private you can access the web GUI on https 192 168 100 100 27376 this may require some configuration changes on the machine you are using to configure the appliance i e adding a new IP address on machine into the same subnet as 192 168 100 100 24 jetNEXUS Discovery jetNEXUS Discovery is designed to make the initial configuration of the jetNEXUS ALB easy The applicat
80. tions bonding and interfaces you will first need to create Bond Click on Add button on the bonding section Bonding You will then be able to add new bond and then select your bonding mode jetNEXU ALB X User Manual yright jetNEXUS Limited All Rights Page 25 of 107 JetNEX S jetNEXUS Makes Applications Fly Adding interfaces to the bond Adding interfaces to a bond in the example below will add eth1 and eth2 to 0 Both eth1 and eth2 are now part of bond0 tr Adding a new bonded adapter Using the Navigation bar on the left of the web interface go to Setup Appliance this will open the T Appliance I ab Click on Add Adapter and select bondO you will need to configure this with an IP address and subnet mask In the example I have used 172 16 1 240 24 Adapter Details Tak Eg emere ater Adapter E ena E eet E E and Example Bond0 now configured with 172 16 1 240 24 JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page 26 of 107 JetNEXUS Makes Applications Fiy CR LAN s using the Navigation bar on the left of the web interface go to Setup Appliance this will open the T tab What is a VLAN A virtual LAN commonly known as a VLAN is a group of hosts with a common set of requirements that
81. ts R Page 106 of 107 jetNEXUS Makes Applications Fly ASSET Troubleshooting Further help can be found on the jetNEXUS websites http www jetNEXUS com support html http forum jetNEXUS com Contact US I hope you have found this User Manual informative but if you need any clarification or further information please do not hesitate to get in contact with jetNEXUS Support E mail support jetNEXUS com Support 44 0870 382 5529 Phone 44 0870 382 5550 Check out our blog HYPERLINK http jetnexus blogspot com http jetNEXUS blogspot com jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 107 of 107
82. until the next check is triggered The Caching screen is divided into three parts Parameters to configure overall cache behaviour Cade Manum Cache ste ug 30 T Desred cache Ma 30 n a Force check on the cache size Defaut Caching Time 00 00 Cachable HTTP Response Codes 200 203 301 30 410 cache Checkno Timer 03 00 dct ta pene Eos cac Cachesil Count 20 Note utto clears the cache of expired items no longer being served 18 ALB X User Manual Cop Page 57 of 107 1 jetNEXUS Limited All Rights Res jetNEXUS ight 2 JetNEX S jeEXUS Makes Applications Born Gear Cache The cear cache auton clears the cache of all content Parameters to defined Rule Bases to domains Apply Cache Rule eee ecc nce Parameters to define more caching Rule Bases Create Cache Rule ache Content Selecton Rulebases 23 Deserpon Condition Conditions acres nost Ince ipa wee of ora Cache Settings Cache Maximum Cache Size MB 50 Desired Cache Size MB 30 Default Caching Time D HH MM 1 00 00 Cachable HTTP Response Codes 200 203 301 304 410 Cache Checking Timer D HH MM 03 00 Cache Fil Count 20 The parameters related to overall caching behaviour are as follows jetNEXUS ALB ALB X User Manual Copyright 2011 jetNEXUS Limi
83. uped mail description Grouped Message title Send grouped mail every Time for alerts to be sent Enabled warnings and event desciptons in r Discspace vang Dik reor f Wam fee space less than 1 r Licence renewal vang cence renewal recured Disk Space warning Warn if free space less than License renewal warning jetNEXUS ALB ALB X User ual Copyright 2011 jetNEXUS Limited All Rights Disk near full message Percentage of disk before alert License renewal required Page 97 of 107 jetNEXUS Makes Applications Fly Services JetNEXUS The Services menu provides pages to allow the following actions to carried out on the jetNEXUS ALB Services The menu provides the followings tabs Date and Time amp Date amp Time Ping SNMP Lid Capture B capture Restart Restart Reboot LE Power off Grace JetNEXUS ALB ALB X User Manual Copyright 1 jetNEXUS Limi ed All Rights Reserved Page 98 of 107 jetNEXUS Makes Applications Fly Wess Date and Time Simply enter the new time UTC format and Click on update Date amp Tine amp Date 0402011 1847 03 Time Server URL Time server URL Update at 06 00 period hours 2 NTE NTP vi Over TC The Appliance also supports NTP the Appliance also supports NTP Time Server URL Timeserver URL allows jetNEXUS ALB to connect to
84. ur 3 Parameters to define rule bases for Domains 4 Parameters to define on or more caching rule bases 5 Cache Settings a Maximum cache size b Desired cache size c Default Caching time d Cacheable HTTP response code e Cache fill count 6 Adding a Caching rule 7 Creating a caching rule base 8 Associating Domains to a caching rule base a Caching by HOST b Caching by Channel 9 Cache content Statistics Connection Pooling 1 What is connection pooling 2 Enable connection pooling SSL Offload and Termination 1 What can jetNEXUS can do with SSL 2 Creating a self signed certificate a Certificate name Organization Organizational unit City Locality Sate Province Country Domain name Key Length i Period 3 Creating Certificate Requests 4 Installing trusted certificates 5 Certificate Management Renew jetNEXU ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Re Page S of 107 jetNEXUS Makes Applications Fly b Show c Delete d Install 6 Importing Certificates 7 Exporting Certificates 8 Configuring an SSL Listening interface 9 Configuring SSL for content servers Failover Configuration JetNEXS 1 Why use failover 2 Enabling failover 3 Failover diagram 4 Failover diagram explained 5 Failover configuration 6 Failover status lights ALB Maintenance 1 Backing up the ALB 2 Restoring the ALB 3 Updating the softwa
85. usted certificate in a popup window as shown below B ALB X User Manual Cop jetNEXUS Page 75 of 107 jetNEXUS Makes Applications Fly prd Delete The Delete button allows a self signed certificate pending certificate request or trusted certificate to be completely removed from the jetNEXUS ALB Install The Install button allows a certificate to be installed copy and paste the certificate into the field Importing Certificates Using the Navigation bar on the left of the web interface go to Configure 551 3 Import Certificate and this will open the Import certificate tab The imported certificate should be a PKCS 12 file and should include an exported private key The Certificate Name is the name to be used to reference the import certificate It should be a unique name gt Exus ALB X User Manual imited All Rights Res Page 76 of 107 JetNEX 5 jetNEXUS Makes Applications Fly The Password is the password supplied when the certificate was exported either from another jetNEXUS ALB or from an Apache or IIS web Server Click browse to locate your certificate click go to upload it Upload Certificate _ Browse Exporting Certificates Using the Navigation bar on the left of the web interface go to Configure 9551 and click on ej Export certificate Thi will open the Export certificate tab Select the cert
86. vity Download W3C Log This will download the W3C compatible log from ALB The format of the file name is wScyyyymmdd log where yyy year 2000 onwards mm month 1 12 dd day 1 31 Download W3C Log w302010928 08 09 wiczo Hos og jetNEXUS WCE logs are compatible with the w3c draft standard for web server logs and should be compatible with most analysis tools Download System Log This will download the event log for the appliance The format of the file name is sysyyyymmdd log where yyyy year 2000 onwards mm month 1 12 dd day 1 31 Download System Loo Downicnd System Log pero pena E T xxr jetWEXUS User Manual Copyright 2011 jetNEXUS Limited All Rights Reserved Page 95 of 107 jetNEXUS Makes Applications Fly Email Events JetNEX 5 Using the Navigation bar on the left of the web interface go to Configure Email Events this will open the What can you set L1 E Mail events tab The ALB can be configure to automatically send email alerts on key events such as losing service Overheating device rebooting interfaces being raised or lowered contents servers coming on and off line etc Mail Server SMTP Setup Send Events To Address Address Server SMTP Host address pore 25 Send timeout 2 Use authentcaton Securty none Mal server Account amet Mai Saner Passwords
87. y clicking on the Add Adapter we can now add the details for the eth1 interface er po perm pe Wao E 5 Tes IN Fill in the address and subnet mask for the second eth1 adapter Once completed click Update and ALB will raise the interface on the eth1 adapter Adaptor Details apt sano tao teen JetNEXUS ALB ALB X User Manual Copyright 11 jetNEXUS Limited All Rights Reserved Page 30 of 107 JetNEX 5 jetNEXUS Makes Applications Fly jetNEXUS Connectivity modes You can configure your Channel IP services to run in the 4 connecti mode is detailed below ity modes below each Once you have configured a Channel you will be able to access the Connectivity options Connectivity Managed hing Strategy Managed Drect Server 59 Transparency Gateway artian Baalina Managed This is the default setting for jetNEXUS and works at Layer7 with compression and Caching and also at layer4 without caching and compression In this mode the jetNEXUS acts as a proxy and becomes the source address seen on the content servers How it works Client sends a request to the jetNEXUS Request received jetNEXUS Request routed to content servers e Response sent to jetNEXUS e jetNEXUS responds directly to client Direct Server Return Direct Server Return or DSR as it s widely known DR
Download Pdf Manuals
Related Search