tech stuff.

Server load balancing in pfSense 1.3

with 2 comments

I was poking around at the 1.3-ALPHA-ALPHA pfSense, and it looks like slbd is going to be replaced with OpenBSD’s relayd!  I can’t tell you how happy I am about this development.  Not only will relayd increase pfSense’s feature set by some order of magnitude, I have hope that it will make pfSense a viable load balancer.

Though pfSense has load balancing features right now, its limitations make it mostly unusable for my applications.  The way that slbd operates breaks session stickiness.  I’m not sure why, but I suspect that slbd is updating its pf anchor unconditionally per polling period which causes pf to reset its session state.  In addition to breaking stickiness, this causes load to be balanced unfairly.

I’ll have to do some testing to see if relayd has this say behavior.  If nothing else, though, I’m excited about a whole new host of features, some of which I haven’t seen since I last touched a NetScaler:

  • Layer 7 (in addition to Layer 3) load balancing
  • Layer 7 health monitoring (http request/response checking)
  • In-Flight HTTP request/response modifications (such as appending Remote-Host header)
  • Additional balancing algorithms, including one that can be sticky on HTTP headers/cookies

All-in-All pretty fantastic.  I don’t imagine we’ll see 1.3 until Q2 of 2009, though, so it may be worth back-porting it as a package for 1.2.1.

Advertisements

Written by Lee Verberne

2008/09/06 at 21:52

Posted in Internet, pfsense

Tagged with ,

2 Responses

Subscribe to comments with RSS.

  1. FWIW, it’s unlikely we’ll see this as a package in 1.2.1 as I don’t believe the code I wrote for this will run in PHP4. Also, our package system is somewhat limited when it comes to packages of this type – there is however a pound package floating around that might make it into 1.2.1.

    –Bill

    Bill Marquette

    2008/09/08 at 06:05

  2. Hi,

    My name is Shah. Thanks, for your information on pfsense. Actually, right now I’m working on pfsense (v 1.2.2)and use it as a proxy for my company’s network. My boss ask me whether this pfsense capable to do as fail over/load balance. so i said yes it can. And now, I’m googling around to see the right information that i can get. Hopefully, you are willing to share your experience on configuring pfsense with load balancer.

    Thanks. :)

    Shah

    2009/05/14 at 10:06


Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: