So, in a dream last night, I woke up realising I had forgot to write my automated load balancer connectivity checker.<\/p>\n
Basically, sometimes a customer will complain their site is down because their ‘load balancer is broken’! In many cases, this is actually due to a firewall on one of the nodes behind the load balancer, or an issue with the webserver application listening on the port. So, I wrote a little piece of automation in the form of a BASH script, that accepts an Load Balancer ID and then uses the API to pull the server nodes behind that Load Balancer, including the ports being used to communicate, and then uses, either netcat or nmap to check that port for connectivity. There were a few ways to achieve this, but the below is what I was happiest with.<\/p>\n
\r\n#!\/bin\/bash\r\n\r\n# Username used to login to control panel\r\nUSERNAME='mycloudusernamegoeshere'\r\n\r\n# Find the APIKey in the 'account settings' part of the menu of the control panel\r\nAPIKEY=\"apikeygoeshere\"\r\n\r\n# Your Rackspace account number (the number that is in the URL of the control panel after logging in)\r\nACCOUNT=100101010\r\n\r\n# Your Rackspace loadbalancerID\r\nLOADBALANCERID=157089\r\n\r\n# Rackspace LoadBalancer Endpoint\r\nENDPOINT=\"https:\/\/lon.loadbalancers.api.rackspacecloud.com\/v1.0\"\r\n\r\n# This section simply retrieves and sets the TOKEN\r\nTOKEN=`curl https:\/\/identity.api.rackspacecloud.com\/v2.0\/tokens -X POST -d '{ \"auth\":{\"RAX-KSKEY:apiKeyCredentials\": { \"username\":\"'$USERNAME'\", \"apiKey\": \"'$APIKEY'\" }} }' -H \"Content-type: application\/json\" | python -mjson.tool | grep -A5 token | grep id | cut -d '\"' -f4`\r\n\r\n# (UNUSED) METHOD 1Extract IP addresses (Currently assuming port 80 only)\r\n#curl -H \"X-Auth-Token: $TOKEN\" -H \"Accept: application\/json\" -X GET \"$ENDPOINT\/$ACCOUNT\/loadbalancers\/$LOADBALANCERID\/nodes\" | jq .nodes[].address | xargs -i nmap -p 80 {}\r\n# (UNUSED) Extract ports\r\n# curl -H \"X-Auth-Token: $TOKEN\" -H \"Accept: application\/json\" -X GET \"$ENDPOINT\/$ACCOUNT\/loadbalancers\/$LOADBALANCERID\/nodes\" | jq .nodes[].port | xargs -i nmap -p 80 {}\r\n\r\n\r\n# I opted for using this method to extract the important detail\r\ncurl -H \"X-Auth-Token: $TOKEN\" -H \"Accept: application\/json\" -X GET \"$ENDPOINT\/$ACCOUNT\/loadbalancers\/$LOADBALANCERID\/nodes\" | jq .nodes[].address | sed 's\/\"\/\/g' > address.txt\r\ncurl -H \"X-Auth-Token: $TOKEN\" -H \"Accept: application\/json\" -X GET \"$ENDPOINT\/$ACCOUNT\/loadbalancers\/$LOADBALANCERID\/nodes\" | jq .nodes[].port > port.txt\r\n\r\n# Loop thru both output files sequentially, order is important\r\n# WARNING script does not ignore whitespace\r\n\r\nwhile read addressfile1 <&3 && read portfile2 <&4; do\r\n ncat $addressfile1 $portfile2\r\ndone 3\nOutput looks a bit like;<\/p>\n
# .\/lbtest.sh
\n % Total % Received % Xferd Average Speed Time Time Time Current
\n Dload Upload Total Spent Left Speed
\n100 5143 100 5028 100 115 4731 108 0:00:01 0:00:01 --:--:-- 4734
\n % Total % Received % Xferd Average Speed Time Time Time Current
\n Dload Upload Total Spent Left Speed
\n100 225 100 225 0 0 488 0 --:--:-- --:--:-- --:--:-- 488
\n % Total % Received % Xferd Average Speed Time Time Time Current
\n Dload Upload Total Spent Left Speed
\n100 225 100 225 0 0 679 0 --:--:-- --:--:-- --:--:-- 681
\nNcat: No route to host.
\nNcat: Connection timed out.<\/p>\n
I plan to add some additional support that will check the load balancer is up, AND the servicenet connection between the cloud servers. <\/p>\n
Please note that this script must be run on a machine with access to servicenet network, in the same Rackspace Datacenter to be able to check servicenet connectivity of servers. The script can give false positives if strict firewall rules are setup on the cloud server nodes behind the load balancer. It's kind of alpha-draft but I thought I would share it as a proof of concept.<\/p>\n
You will need to download and install jq to use it. To download jq please see; https:\/\/stedolan.github.io\/jq\/download\/<\/p>\n","protected":false},"excerpt":{"rendered":"
So, in a dream last night, I woke up realising I had forgot to write my automated load balancer connectivity checker. Basically, sometimes a customer will complain their site is down because their ‘load balancer is broken’! In many cases, … Continue reading