Embed Size (px)
Citation preview
AWS and NGINX PlusBetter Together
14 December 2016
MORE INFORMATION AT NGINX.COM
Who Are We?
Faisal MemonProduct Marketing
Formerly:- Technical Marketing Engineer,
Riverbed- Software Developer, Cisco Systems
Floyd SmithTechnical Marketing Writer
Formerly:- Apple, Alta Vista, Google, and more- Author of multiple books on
technology
MORE INFORMATION AT NGINX.COM
Who Are You?Job TitlesAnalystArchitectConsultantCloud EngineerCEOCTO DeveloperDevOps EngineerFounderFull Stack DeveloperSecurity Engineer Systems AnalystTech Lead
Organization Types
BroadcastingComputer technologyConsultancyCRM softwareFinanceGovernmentInsurance companyMobile phonesNetworking technologyPharmaceuticalsSoftware developmentTechnology consultancyTelecoms
Reasons for Attending“AWS & NGINX like
peanut butter and jelly”“Cloud application development”“Curiosity”“Containers + NGINX = performance & scalability ”“Feature comparison”“I am exploring Nintendo”“I am using both”“Load balancing for cloud”“Move infrastructure to AWS”
MORE INFORMATION AT NGINX.COM
About NGINX, Inc.• Founded in 2011, NGINX Plus first released in
2013• VC-backed by enterprise software industry
leaders• Offices in SF, London, and Moscow• 1,000+ commercial customers• 100+ employees
200 milliontotal sites
running on NGINX
5Source: Netcraft June 2016 Web Server Survey
56%of the top 10,000busiest websites
6Source: W3Techs Web Technology Survey
8
Internet
Web ServerServe content from disk
Application GatewayFastCGI, uWSGI, Passenger…
Reverse ProxyCaching, load balancing…
HTTP traffic
Where NGINX Fits
How Do I Build Scalable Applications in AWS?• Route 53 – DNS service, can be used for global server load
balancing (GSLB)
• Elastic Load Balancer (ELB) – Basic load balancer for simple apps
• Application Load Balancer (ALB) – More advanced load balancer with ability to do Layer 7 request routing
• NGINX Plus – Most advanced load balancer available in AWS, can be used in conjunction with ELB
How does all this fit together?
NGINX Plus and ELBUse Amazon ELB for:
• Basic TCP or HTTP load balancing to multiple NGINX Plus instances
• High-availability load balancing across multiple availability zones
• Autoscaling NGINX Plus instances and backend servers
• Easy integration with other Amazon services - CloudFront, Route 53, and CloudWatch
Use NGINX Plus for:
• Layer 7 request routing• Reducing costs with support for
multiple apps• Improving overall performance
with content caching • Improving SSL/TLS performance
3x with elliptic curve cryptography (ECC)
• WebSocket and HTTP/2 proxying• Advanced HTTP health checks• SSO and API authentication with
JWT
• Use geolocation/latency to route users to closest region
• DNS load balance NGINX Plus servers within a region
• 1-3 minute failover, depending on DNS TTL
• Reduced complexity and cost
NGINX Plus and Route 53 without ELB
Amazon Limitations• Multiple apps – Each ALB or ELB instance only supports a single
application - Single certificate per instance - No SNI support with ELB - Multiple instances is more cost and complexity
• Pricing – No volume discounts with ELB or ALB - $0.008 per GB of data in with ELB adds up - Complex pricing models with ALB
• Features – Both ELB and ALB have limited feature sets - ALB improves greatly on ELB but is still lacking in key areas - Slow feature development − ELB has not changed in years
Amazon Limitations (cont.)• Lock-in – No on-premises offerings - No offerings in other clouds - Free to move data in, costly to move data out
NGINX Plus vs. ALB: FeaturesFeature ALB NGINX Plus
Load Balancer Round Robin only RR, Least Conn, Least time
Cache No Yes
SSL/TLS RSA only Dual-stack RSA/ECC
WAF No Yes, ModSecurity
Content Routing URL URL, cookies, headers, args
HTTP/2 Yes Yes
Applications One per ALB Unlimited per instance
NGINX Plus vs. ALB: PricingUS West Northern California:$0.0252 per ALB-hour (or partial hour)$0.008 per LCU-hour (or partial hour)
25 conns/sec (or TPS) with a 2 KB certificate, 3,000 active conns, and 2.22 Mbps of data transfer
For 1,200 SSL TPS for 1 year for 1 app:[0.0252*24 + 0.008 * 1,200/25 * 24] * 365 = $3,584
For 1,200 SSL TPS for 1 year for 25 apps:[0.0252*25*24 + 0.008 * 1,200/25 * 24] * 365 = $8,882
For 5,000 SSL TPS for 1 year for 1 app:[0.0252*24 + 0.008 * 5,000/25 * 24] * 365 = $14,016
For 13,000 SSL TPS for 1 year for 25 apps:[0.0252*25*24 + 0.008 * 13,000/25 * 24] * 365 = $41,960
NGINX Plus vs. ALB: Pricing (cont.)US West Northern California:NGINX Plus: 6,600 SSL TPS with Intel e5-2699 v3 using 8 cores (Bare metal, OpenSSL 1.0.2)Minus 20% virtualization overhead: 5,280 SSL TPSCorresponds roughly to m4.2xlarge instance size (2.3 GHz Intel Xeon® E5-2686 v4)
Ubuntu 16.04 m4.2xlarge: $0.503/hour NGINX Plus subscription: $1,900/year
1,200 SSL TPS, 1 year, unlimited apps0.126* 24 * 365 + 1,900 = $3,004
5,000 SSL TPS, 1 year, unlimited apps0.503 * 24 * 365 + 1,900 = $6,306.28
13,000 SSL TPS, 1 year, unlimited apps (m4.10xlarge)2.514 * 24 * 365 + 1,900 = $23,922
Source: nginx.com/nginx-plus-sizing-guide
NGINX Plus vs. ALB: Pricing (cont.)
Configuration ALB NGINX Plus
1,200 SSL TPS, 1 app $3,584 $3,004 (16% savings)
1,200 SSL TPS, 25 apps $8,882 $3,004 (66% savings)
5,000 SSL TPS, 1 app $14,016 $6,306 (55% savings)
5,000 SSL TPS, 25 apps $19,534 $6,306 (67% savings)
13,000 SSL TPS, 1 app $36,663 $23,922 (35% savings)
13,000 SSL TPS, 25 apps $41,960 $23,922 (43% savings)
MORE INFORMATION AT NGINX.COM
Public/Private/Hybrid CloudBare Metal Containers
21
NGINX Plus Works in All Environments
MORE INFORMATION AT NGINX.COM
• Run anywhere• Common interface for
heterogeneous environments• Least Time load balancing
algorithm takes network latency into account
• SSL/TLS encryption to backend servers
NGINX Plus for Hybrid Cloud
MORE INFORMATION AT NGINX.COM
NGINX Plus on AWS Quick Start• Set up a highly available and
secure AWS environment in less than 15 minutes
• Creates NGINX Plus and ELB instances
• Uses two availability zones
Learn more: aws.amazon.com/quickstart/architecture/nginx-plus/
Summary• NGINX Plus can work in conjunction with ELB for highly available
load balancing services
• NGINX Plus can work with Route 53 with or with ELB for global server load balancing (GSLB)
• NGINX Plus can save you over 60% compared to ALB
• NGINX Plus has advanced features not available in ALB
• NGINX Plus can run in any cloud environment for ultimate flexibility
