Creating and managing Network Proxy Load Balancer
  • PDF

Creating and managing Network Proxy Load Balancer

  • PDF

Available in VPC

Network Proxy Load Balancer is a Load Balancer similar with the Load Balancer provided in the Classic environment. It provides communications with proxy methods to provide a load balancing algorithm same that of Application Load Balancer.

Create Network Proxy Load Balancer

The following describes how to create a Network Proxy Load Balancer.

  1. Please connect to the NAVER Cloud Platform console.
  2. Click Services > Networking > Load Balancer menus, in that order.
  3. Click the Load Balancer menu.
  4. Click the [Create load balancer] > [Create Network Proxy Load Balancer] buttons, in that order.
    loadbalancer-proxylb-vpc_button_ko
  5. When the load balancer creation page appears, proceed with the following steps in order.
Note

3. Set certificate step only appears when a listener is added with TLS protocol in 2. Create load balancer (Set listener) step.
In case of adding a listener with just TCP protocol only, proceed with in order except 3. Set certificate step as the step doesn't appear.

1. Create load balancer

Enter the Network Proxy Load Balancer information to create, and then click the [Next] button.

loadbalancer-proxylb-vpc_create_ko

  • Network: Select the network type for the Load Balancer.

    • Private IP: It uses a private IP within a VPC to handle load balancing of an internal server, and can't be accessed from outside the VPC.
    • Public IP: It is set to a public IP to be called from outside the VPC or from the internet to handle load balancing. It can be used by connecting to the customer's domain or CDN service using a random domain provided with the public IP.
  • Load balancing performance: Select the size of the Load Balancer, depending on the load balancing performance.

    • You can select among Small/Medium/Large, depending on the load balancing performance.
    • Each size can handle at least 30,000/60,000/90,000 loads, respectively, based on connections per minute (CPS).
    • The performance of TLS using SSL offloading can be expected to be 1/10 compared to TCP, but it can differ, depending on the authentication key method and size.
  • Target VPC: Select the VPC where the Load Balancer will be created.

  • Select subnet: Select the zone and subnet where the Load Balancer will be created.

    Caution
    • Once the Load Balancer creation is completed, the selected zone and subnet can't be changed.
    • Create and select a dedicated subnet. If the Load Balancer is located in the same subnet with the server, then no load balancing is handled to the server.
    • In the Target VPC, only subnets included in the selected VPC can be selected.
    • For the Singapore region, subnets can be selected, depending on the selected network type.
      • If Private IP is selected, then only subnets created as private IP Load Balancer subnets can be selected.
      • If Public IP is selected, then only subnets created as public IP Load Balancer subnets can be selected.
      • For more details about creating subnets, refer to Create subnet.
    • It isn't necessary to create subnet for each Load Balancer, but a subnet of a C-class scale (255.255.255.0) is recommended.
  • If the Network is selected as public IP in the Singapore region, then a fixed public IP can be specified.

    • Public IP: Select the same zone as the subnet, and then select an IP not in use among the requested IPs in the Public IP menu to assign it to the Load Balancer. If there is no IP requested, then Request for public IP can be selected to make a new request.
    • The same public IP can't be selected in different zones.
    Caution

    Once a public IP is set, it becomes fixed and can be used semi-permanently, but can't be changed.

2. Create load balancer (Set listener)

loadbalancer-proxylb-vpc_listener_ko

  1. Select a protocol (TCP/TLS) where the Load Balancer's default listener will be operated.
  2. Select a port where the Load Balancer's default listener will be bound.
  3. Click the [Add] button.
    • The listener is added.
    • Repeat Steps 1 to 3 to add multiple listeners.
    • Click the [Delete] button to delete the added listeners.
  4. Click the [Next] button.

3. Set certificate

Note

The Set certificate step only appears when a listener is added with TLS protocol in 2. Create load balancer (Set listener) step.

loadbalancer-proxylb-vpc_certificate_ko

  1. Select a certificate appropriate to the service among certificates registered in Certificate Manager.
  2. Select the TLS protocol's version in the Minimum support version of TLS.
    • TLSv1.0, TLSv1.1, or TLSv1.2 can be selected.
  3. Select the cipher suite that TLS listener will support in the Set cipher suite.
    • Load Balancer can select the encryption features to be provided in encryption negotiation with the client.
    • Select Select All to select all supported cipher suites.

4. Select target group

Select the target group to perform load balancing, and then click the [Next] button.

  • To do this, the target group need to be created in advance. If there aren't any previously created target groups, then click the [Create target group] button to create a target group. (Refer to Create target group)
  • Among target groups created, only target groups that can be connected are displayed.
    • Network Proxy Load Balancer can only select target groups created with PROXY_TCP protocol.
Caution

The Load Balancer subnet range must be included as an access source and allowed port in the bound server's ACG and NACL.

5. View settings information

Check Load Balancer settings information, and then click the [Create load balancer] button.

Manage Network Proxy Load Balancer

Network Proxy Load Balancer created can change Load Balancer, subnet, and listener settings, and check the monitoring information as a graph.

Note

The server applied to the Load Balancer can be changed in the Target Group menu. For more details, refer to Set target.

Set Load Balancer

The following describes how to check the Load Balancer settings information and change the settings.

  1. From the NAVER Cloud Platform console, click the Services > Networking > Load Balancer menus, in that order.

  2. Click the Load Balancer menu.

  3. Check the settings information or select the Load Balancer to change, and then click the [Change load balancer settings] button.

    • The load balancer settings change pop-up window appears, and the Load Balancer's settings information can be checked.
  4. Apply the changes, and then click the [OK] button.

    loadbalancer-proxylb-vpc_edit_ko

    • Load balancing performance can be changed.
      • You can select among Small/Medium/Large, depending on the load balancing performance.
      • Each size can handle at least 30,000/60,000/90,000 loads, respectively, based on connections per minute (CPS).
    • The performance of TLS using SSL offloading can be expected to be 1/10 compared to TCP, but it can differ, depending on the authentication key method and size.
    • Idle timeout can be changed.

Change subnet

Note
  • It can only be added if one zone and subnet are selected when creating a Load Balancer.
  • Once a subnet is added, it can't be changed.

The following describes how to add a zone and subnet to place Network Proxy Load Balancer.

  1. From the NAVER Cloud Platform console, click the Services > Networking > Load Balancer menus, in that order.
  2. Click the Load Balancer menu.
  3. Select the Load Balancer to add a subnet, and then click the [Change subnet] button.
    • The load balancer subnet change pop-up window appears, and the Load Balancer subnet information can be checked.
  4. Add a zone and subnet, and then then click [OK] button.

Set listener

In the listener settings change page, registered listeners can be checked, listeners can be added/changed/deleted, and rules can be viewed and changed.

Note

Network Proxy Load Balancer can't add or delete a rule.

The following describes how to move listener to the settings change page.

  1. From the NAVER Cloud Platform console, click the Services > Networking > Load Balancer menus, in that order.
  2. Click the Load Balancer menu.
  3. Select the Load Balancer to change the listener settings, and then click the [Change listener settings] button.
    • After moving to the listener settings change page, the listener set when creating a Load Balancer is viewed as a default.

Add listener

The following describes how to add a listener.

  1. Click the [Add listener] button in the listener settings change page.
  2. Select a protocol of the listener to add (TCP/TLS).
  3. Enter the port number for listener to be bound to.
  4. Select the following items if TLS protocol is selected.
    • Select a certificate appropriate to the service among certificates registered in Certificate Manager.
    • Select the TLS protocol's version.
      • TLSv1.0, TLSv1.1, or TLSv1.2 can be selected.
    • Select the cipher suite that TLS listener will support.
      • Load Balancer can select the encryption features to be provided in encryption negotiation with the client.
  5. Select the target group where the listener's traffic will be sent.
  6. Click the [OK] button.

Change listener

The following describes how to change a listener.

  1. Click the [Change listener] button in the listener settings change page.
  2. Refer to Add listener to apply changes.
  3. Click the [OK] button.

Delete listener

Note
  • At least 1 listener must remain. So if one listener is added, then the listener can't be deleted. Perform Add listener to delete the one remaining listener.
  • The listener can be deleted if Load Balancer's status is Running.

The following describes how to delete a listener.

  1. Select the listener to delete in the listener settings change page.
  2. Click the [Delete listener] button.
  3. Check the details in the listener deletion pop-up window, and then click the [Delete] button.
    • The selected listener is deleted.

Viewing rule

Registered rules can be viewed in the rule view/change page.

Rules have the following characteristics.

  • Each rule is comprised of an action (No condition is specified for Network Proxy Load Balancer)
  • A default rule can't be deleted
  • Each rule is applied according to the priority, and traffic not applied is operated by default rule

The following describes how to view registered rules.

  1. Select the listener to view rules in the listener settings change page.
  2. Click the [View/Change rule] button.
    • Go to the rule view/change page.

Changing rule

The following describes how to change rules.

  1. Select the listener to change a rule, and then click the [View/Change rule] button in the listener settings change page.
  2. Select the rule to change, and then click the [Change rule] button in the rule view/change page.
  3. Apply the changes.
    • Change the target group in the Action, and then click the [Add] button.
      • Weights can't be changed.
    • Click the [X] button to delete the added target group.
  4. Click the [OK] button.

Network Proxy Load Balancer monitoring

The collected information about concurrent connection, connection per second, traffic-in, and traffic-out can be checked as a graph, respectively, depending on the selected period.

Note

The collection cycle varies, depending on the selected period. Monitoring information collected by handling load balancing can be set up and checked from at least one minute to the recent one year.

The following describes how to check the Network Proxy Load Balancer's monitoring information.

  1. From the NAVER Cloud Platform console, click the Services > Networking > Load Balancer menus, in that order.
  2. Click the Load Balancer menu.
  3. Select the Load Balancer to monitor, and then click the [Monitoring] button.
    • The Load Balancer basic monitoring pop-up window appears, and the monitoring information can be checked as a graph.
    • Select the period to check the monitoring information collected for the selected period.
    • Click the [Refresh] button to refresh the graph viewed.
    • Click i_loadbalancer_enlargement to check the zoomed-in graph. Click the [X] button to download the collected monitoring information as an Excel file.

Delete Network Proxy Load Balancer

Caution

Deleting the Load Balancer also deletes rules set in a route table. If the route table rule is used in other services, then deleting the Load Balancer may cause the features to not work properly.

The following describes how to delete a Network Proxy Load Balancer.

  1. From the NAVER Cloud Platform console, click the Services > Networking > Load Balancer menus, in that order.
  2. Click the Load Balancer menu.
  3. Select the Load Balancer to delete, and then click the [Delete load balancer] button.
  4. Check the details in the load balancer deletion pop-up window, and then click the [Delete] button.
    • The selected Load Balancer is deleted.
Note

For the Singapore region, if the public IP Load Balancer is deleted, the public IP in use can be terminated together. Unterminated IP can be reassigned to a different server or public IP Load Balancer.


Was this article helpful?