Work with the F5 DNS Load Balancer Service preview

The F5 DNS Load Balancer Service allows you to create individual load balancing services for your apps and websites, providing intelligent distribution of traffic across server resources located in multiple geographies for better speed and reliability. It does this based on Load Balanced Records (LBRs) that hold the top-level information on how the load balancer is to operate. The LBR allows you to specify which hosts you are load balancing, and the rules to use to select the best DNS server for each end-user request.

When an end-user request comes in, the DNS load balancer matches the request against the list of hosts in the LBR. It then determines which region the request is coming from and chooses a pool of IP endpoints based on the proximity rules specified in the LBR. Then it uses the load balancing method specified for that pool to determine which IP endpoint will handle the request. It also maintains a health status of each IP endpoint so that only healthy IP endpoints are returned for use by end users.

Note

This release of the F5 DNS Load Balancer Cloud Service is considered a “Preview Service” under the F5 Cloud Services Subscription Terms. As such, the DNS Load Balancer Cloud Service is provided on a Preview Service-basis for a limited time for your internal demonstration, testing, or evaluation purposes only and not for use in a production environment. This also requires that you not submit any personal information (such as a person’s name or identification number or location data) to the Preview Service. For more details, please refer to the F5 Cloud Services Subscription Terms.


Use the DNS Load Balancer Cloud Service dashboard

Access the DNS Load Balancer Cloud Service dashboard by using the DNS Load Balancer tab in the Cloud Services portal navigation menu.

_images/CS-GSLB.Service.png

On this page, you can:

  • Survey the overall health and status of your DNS Load Balancer Cloud Service configuration (Health indicator details)
  • View the service overview of each load balancer service in your DNS Load Balancer Cloud Service environment
  • Follow the links in the table cells to view the details for a specific load balancer service like pools, regions, and monitors.
  • Create and enable a load balancer service

Setup load balancing for a zone

If you have a good understanding of how load balancing works, you can follow the steps below to setup the DNS Load Balancer service. Alternatively, you can go through the free Getting Started with F5 DNS Load Balancer training course available through F5 University. The steps below are based on the same example used in the training course.

Load balancing overview: As traffic comes in, the DNS Load Balancer will look at each incoming request and choose an IP endpoint to service that request, based on the origin of the incoming request, the configuration of the IP endpoints, and the status or health of each IP endpoint. To setup a load balancing solution, there are a few steps you’ll go through. First, the load balancer must understand the health of each IP endpoint to make sure it can service requests, so you will assign monitors to the IP endpoints to make that possible. Next you will likely want to create pools of IP endpoints allowing you to prioritize groups of IP endpoints based on a criteria or load balancing strategy. Next you’ll create regions to categorize incoming requests. Your last step will be to define how requests from various regions will be distributed between the pools you have created. Here are two examples of possible load balancing strategies.


_images/CS-GSLB-GEO.Example.png

Geography traffic routing example: This example routes traffic based on request origin and pool location. Looking at the two proximity rules, all requests from Europe will go to the EU pool because it has a higher score. Conversly, all requests from a non-Europe location will go to the global pool because those are not covered by the EU pool’s region. You might choose this strategy to help satisfy Europe’s GDPR. You might think of these two proximity rules as the following logical statement: If the request is from Europe, then send it to the EU Pool; otherwise, send it to the Global pool.


_images/CS-GSLB-Disaster.Recovery.Example.png

Disaster recovery example: This example routes traffic all traffic to a primary site, but if the primary site should go off-line, then all traffic would be routed to the secondary site. This happens because both the primary and secondary sites service requests from the same region, but the one with the highest score (the primary site) will service the request. However, if all endpoints at the primary site become unable to service requests, then that entire pool goes offline and the load balancer starts sending requests to the secondary site. Thus the secondary site is only used as a backup for a disaster at the primary site or other situations like routine maintenance of the site.

The following steps will create a DNS Load Balancer service based on the geography traffic routing example.

  1. On Your F5 Cloud, click the DNS Load Balancer tab in the side menu.

  2. On the DNS Load Balancer tab, click the Create button.

    _images/CS-GSLB.Service-Create.png
  3. The DEFINE NEW SERVICE side panel will appear. Enter the zone and optionally the division. Then click Create. A new load balancing service has now been created, but since it has no contents or intelligence, it is just a shell at this point. The following steps will show you how to fill in the information necessary to intelligently perform DNS load balancing.

    _images/CS-GSLB.Service-Define.New.gif
  4. Click the newly created service name to see the Load Balanced Records (LBR) list. Above the list are five tabs that allow you to build the LBRs. The Service overview tab provides an overview of the service. Because you have only created a shell so far, this view will be empty. The other four tabs are where you will fill in the information for how to load balance your traffic. The following steps will walk through those tabs to create an LBR.

    _images/CS-GSLB.Service-Create-LBR.png
  5. Create the monitors required for this load balancing service using the Monitor tab. A monitor defines a health test method for an application (IP Endpoint). For an example using the http protocol, the monitor will send a test string to a specific port for the IP endpoint, and then it evaluates the received string against the expected receive string. Different protocols will have different options for testing the application. IP endpoints that don’t respond, take too long to respond, or don’t return the correct information will be marked as unhealthy so that the load balancer doesn’t use them for end-user request results.

    Enter the following values for the monitor properties:

    • Name this monitor - you will use this name when setting up the IP endpoints
    • Please specify a unique ID
    • Choose protocol - the protocol will determine the other data entry required
    _images/CS-GSLB.Service-Create-Monitor.gif
  6. Click the Manage IP endpoints tab. An IP endpoint is the IP address of the network endpoint—the server hosting an instance of an app or website. When an end-user request comes in, one of these IP addresses will be selected to handle the end-users request. The Manage IP endpoints tab will allow you to define where those application instances exist and which monitor to use for a health check.

    For each application instance, click Create Enter the values for the monitor properties and then click Save:

    _images/CS-GSLB.Service-Create.IP.Endpoint.gif

    After creating your endpoints, your setup should like something like the following image. This example is creating to endpoints that are located in Europe and two that are elsewhere. This is done in anticipation of directing traffic based on regions.

    _images/CS-GSLB.Service-Create.IP.Endpoint.List.png
  7. Click the Maintain pools tab. This will allow you to create pools of endpoints so that the load balancer can direct traffic to the appropriate endpoint. The load balancer will choose different endpoints within the pool for each DNS request based on the load balancing method chosen for the pool. If there is a problem with one of the endpoints as determined by its monitor, then that endpoint will be taken offline, and the load balancer will only use the other endpoints.

    For each pool you want to create, click Create, enter the values for the pool properties, and then click Save:

    _images/CS-GSLB.Service-Create.Pool.gif

    Note

    For more information on the available load balancing methods, see the FAQ document for the DNS Load Balancer cloud service - F5 DNS Load Balancer FAQ.

  8. While still in the Maintain pools tab, you can add or delete pool members. You must have at least one pool member in the pool to have a functional pool. To add a pool member to a pool, first click the pool name that will get the new members, and then click Add Member. Specify the IP endpoint and monitor, and click Add.

    _images/CS-GSLB.Service-Add.Pool.Member.png
  9. When you have created all of your pools and added all of your pool members, click Save in the POOL PROPERTIES page.

  10. If you have more than one pool, you need to tell the load balancer how to split the traffic between the pools. To do this click on Group into regions and then click Create to create each region.

    Regions are geographic areas specified by continents, countries, and states/provinces. These will be used in the LBR for specifying proximity rules for end-user requests. In other words, you can direct end-user requests to specific pools based on their region of origin.

    _images/CS-GSLB.Service-Create.Region.png

    Note

    The Region name and Include these continents fields are required, but the Include these countries and Include these states/provinces region fields will default to “none” if left blank. Furthermore, these fields are all independent of each other, and all are added together to create the region. For instance, if you select Europe, Japan, and California in these fields, then any request coming from the content of Europe or the country of Japan or the US state of California will be covered by this region.

  11. Now that we have all the pieces needed for the LBR (Monitors, IP endpoints, Pools, and Regions), the next step is to create the LBR for this service. To do so, click the Service overview tab and then click Create.

    _images/CS-GSLB.Service-Create.LBR.Properties.png

    LOAD-BALANCED RECORD PROPERTIES specifics:

    • Hosts - You can add more than one host by clicking the + at the right of the field. Clicking the - at the end of the field will delete that host. Wildcards are allowed, i.e. ww* will match anything that starts with ww. Note, however, that that you cannot have overlapping entries, so ww* and www2 will produce a validation error because they are not unique.
    • Checkbox Cache responses so that clients receive persistent answers - Once the connection (the relationship) between an app instance and a client is established, checking this box will tell the load balancer to try to continue giving that client the same app instance. This is useful for apps that are stateful, because sending a client to a different app instance will require the user to log in again. Checking htis box will also reduce latency because the DNS doesn’t need to search for an app instance.
    • IPv4 Clients and IPv6 Clients - These are network size parameters for grouping clients and how to handle persistence.
    • PROXIMITY RULES - These allow you to direct traffic coming from a specific region to be handled by a specific pool. You must provide at least one proximity rule with a valid pool to enabled and LBR. Each proximity rule has a score, which defines the priority of the rule. Rules with larger scores have higher priorities, so if a request matches two regions, the request will be handled by the rule with the higher score.
  12. The service is now created, and the last step is to enable the service. To do this, click the DNS Load Balancer tab in the side menu to see an overview of all of your load balancer services. Select the service name of the newly created service using the checkbox next to it, and then click Enable. You will see the service health update, and the status for the service will go from Disabled to Enabling… to Enabled.

    _images/CS-GSLB.Service-LBR.Enable.png

Health Indicators

An important part of the DNS Load Balancer Cloud Service is to provide a quick and easy way to see the overall health of the service, and the ability to quickly find problem areas so they can be fixed with minimal downtime. To accomplish this goal, DNS Load Balancer shows a health status for both the general service as well as the individual load-balancing services. The image below shows the health for both the DNS and the DNS Load Balancer services on the Your F5 Cloud tab in the Cloud Services portal navigation menu. You can click on the health status to get more details.

_images/CS-GS-Your.F5.Cloud.Health.png

The image below shows an example of the DNS Load Balancer Cloud Service dashboard with the health status highlighted. The SERVICE HEALTH shown at the top left gives an account-level health aggregation of all of your active load-balancing services, whereas the list of Health statuses on the right shows the health of each individual load-balancing service. This allows you quickly see if you have any service problems, and if so quickly scroll down the list of services to see which ones are having a problem.

_images/CS-GSLB.Service-Health.png

The SERVICE HEALTH shown above provide a general sense of the problem based on the state and color shown. The table below shows the different health states along with their color and meaning.


State Description
HEALTHY All individual load-balancing services are blue/healthy
DEGRADED One or more services are yellow/degraded, and no services are red and not in service
NOT IN SERVICE One or more services are red/not in service
N/A All services are currently inactive

The service-level Health column shows the health of each service. The meaning of each color/state is shown in the table below.


State Description
HEALTHY This service is up and running in all deployed regions
DEGRADED This service is up and running but requires attention possibly due to configuration problems, or the service is down in at least one of deployed regions, but not all of them
NOT IN SERVICE This service is down due to a critical error or down in all deployed regions
NA This service is currently inactive


View the details for a load balancing service

To view the details for a load balancing service, click DNS Load Balancer in the side menu to go to the DNS Load Balancer dashboard.

On the details page for the load balancing service, you can view information about the zone, such as its status, its fully qualified domain name (FQDN), its IPv4 and IPv6 addresses, and its zone file. You also can change some details about the zone, such as its name and the IP address for its primary DNS server.

  • Manage your IP enpoints
  • View and define the monitors for your endpoints
  • Maintain the pools for your load balancing
  • View and create regions for your proximity rules