root360 gmbh andreas ulm | 09.09 - aws community day traffic... · 2019-09-16 · aws waf internet...
TRANSCRIPT
![Page 1: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/1.jpg)
High Traffic Scenarios - Issues & StrategiesAndreas Ulm | 09.09.2019root360 GmbH
Community Day 2019 Sponsors
![Page 2: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/2.jpg)
High Traffic?
● event driven vs. repeated vs. application● network bandwidth● request count● internal & external● inbound & outbound
2
![Page 3: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/3.jpg)
Infrastructure
3
![Page 4: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/4.jpg)
Know Your ApplicationHallhuber (Magento 2): ~2k web requests => ~46k redis commands (Get & Set)
4
![Page 5: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/5.jpg)
Know your Trafficbig sneaker seller (OXID)
~7M requests / h, ~2.3M malicious traffic
5
![Page 6: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/6.jpg)
Warm-Up
● warm-up of ASG○ increase instance count
● warm-up loadbalancer / CDN cache○ via AWS Support○ via request generators
● many server vs. big servers
6
![Page 7: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/7.jpg)
Reduce Network Latency
7
● central cache vs. local cache● single-AZ
![Page 8: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/8.jpg)
Scale CDNSugarshape VIB-Box (“Die Höhle der Löwen”)
allow slow-down of your business processes
8
![Page 9: root360 GmbH Andreas Ulm | 09.09 - AWS Community Day Traffic... · 2019-09-16 · AWS WAF Internet CloudFront VPC I—ITT P/ HTTPS ALB Public-DMZ Jump-Server Gateway- DMZ AWS NatGW](https://reader034.vdocuments.net/reader034/viewer/2022042407/5f22079877002614d41161f3/html5/thumbnails/9.jpg)
Q / A
9