A simple TCP server written in Python. It uses HAProxy for L4 load-balancing/HA and clustered etcd for state replication.
- Python 3.0+
- Docker
- Docker Compose
docker-compose up -dto provision network, download images and launch containersdocker exec -it client01 /usr/bin/telnet frontend.socketz.gg 4141...client04to mimic outside client connectionsdocker kill server01to demonstrate that new requests roundrobin to healthy servers only viaHAProxydocker kill etcd01to demonstrate that DNS roundrobin will use working connectionsdocker exec etcd01 /bin/sh -c "export ETCDCTL_API=3 && /usr/local/bin/etcdctl member list"to list nodes in cluster
haproxy01http://localhost:9000/statshaproxy02http://localhost:9001/statshaproxy03http://localhost:9002/stats
default credentials: admin:hodl
WHOshows clients connected to all available servers and locally connected clients (via HAProxy)WHEREoutputs the id of the server (unique identifier)WHYoutputs the string "42" ;]QUITterminates session 👋
-H, --hostdefault0.0.0.0-p, --portdefault5151
docker-compose configprints out config with var substitutiondocker-compose pslists running containers launcheddocker attach <name>attaches to tty
python3 server.py
Starting server...
connection from: 127.0.0.1:61623
sent reply to 127.0.0.1:61623
sent reply to 127.0.0.1:61623
sent reply to 127.0.0.1:61623
sent reply to 127.0.0.1:61623
Trying 172.60.0.2...
Connected to frontend.socketz.gg.
Escape character is '^]'.
WHO
IP:PORT of clients connected to this server: {'172.60.0.3:45274', '172.60.0.4:33078', '172.60.0.2:44592'}
clients connected to this server: 3
clients connected to all servers: 5
WHERE
08483048-fdb7-4648-9f00-c505e1207df4
This is accomplished by running a three member cluster of etcd with HAProxy load balancing client requests. etcd is the source of truth for all three of the backend Python servers. Consistency is enforced by Raft, the consensus algorithm used by etcd. For etcd HA is achieved through a combination of clustering (failure tolerance 1 with a 3 node cluster) and pointing to a DNS roundrobin'ed FQDN, so that requests hit the next available host (RFC 1794). It's worth noting that Docker DNS handles this differently as it pulls the A record out. For the TCP servers, HA is achieved by the use of HAProxy roundrobin proxy with 2s check intervals, as well as DNS roundrobin.
root@client02:/# dig frontend.socketz.gg +short
172.60.0.3
172.60.0.2
172.60.0.4
root@client02:/# dig etcd-cluster.socketz.gg +short
172.60.0.22
172.60.0.21
172.60.0.23
❯ docker exec etcd01 /bin/sh -c "export ETCDCTL_API=3 && /usr/local/bin/etcdctl put clients 5"`
OK
❯ docker exec etcd02 /bin/sh -c "export ETCDCTL_API=3 && /usr/local/bin/etcdctl get clients"
clients
5
❯ docker exec etcd03 /bin/sh -c "export ETCDCTL_API=3 && /usr/local/bin/etcdctl get clients"
clients
5
This shows that a key:value pair put on etcd01 is made available to etcd02 and etcd03 via the Raft consensus algorithm. If one dies, it will "re-sync" when it rejoins the cluster.