Re: Securing web site with redundancy ?

From: Jose Maria Lopez (jkerouac@bgsec.com)
Date: Mon Aug 23 2004 - 16:37:30 EDT

• Next message: Paris E. Stone: "RE: Novell Netware 4 or higher password cracker"
• Previous message: ÃÖÈ¿½Ä: "RE: interesting wireless card and linux issue"
• In reply to: Josh Tolley: "Re: Securing web site with redundancy ?"
• Next in thread: Ivan Groenewald: "RE: Securing web site with redundancy ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

El sáb, 21 de 08 de 2004 a las 00:50, Josh Tolley escribió:
> There are loads of such options -- if you like Linux, the LVS project
> will do what you want. You might also look at heartbeat and mon, also
> linux utils. I couldn't tell you what commercial options you might want
> to use other than Windows clustering, which would do this as well. For
> that you may require some sort of shared storage, and a switch that's
> compatible -- it can do some funny things with arp, which really
> confuses a lot of switches (ours, for example, which has decided to
> broadcast all traffic to our cluster all over our LAN, which makes it a
> huge pain to use. Perhaps we have it configured wrong, but I haven't had
> time to look at it much).
>
> Josh Tolley
> Raintree Systems, Inc.
> http://www.raintreeinc.com
> 760 509 9000

I agree the LVS projects works wonderfully for this kind of
balancer,even if you use SSL. You can also use any kind of
High Availability at the same time, as the heartbeat you
have proposed or kimberlite, failsafe, etc, all of them
are free software now. A combination
of a high availability project and LVS (finally in the
Linus kernel tree) will provide redundancy and balancing
at the same time.

The only thing I don't agree with is using mon, I find
nagios a much better monitoring solution for this kind
of clusters.

-- 
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
                -- Jack Kerouac, "On the Road"
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

• Next message: Paris E. Stone: "RE: Novell Netware 4 or higher password cracker"
• Previous message: ÃÖÈ¿½Ä: "RE: interesting wireless card and linux issue"
• In reply to: Josh Tolley: "Re: Securing web site with redundancy ?"
• Next in thread: Ivan Groenewald: "RE: Securing web site with redundancy ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:00 EDT