[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Kerberos and Load balancing

To: heimdal-discuss@sics.se, Ken Raeburn <raeburn@MIT.EDU>
Subject: Re: Kerberos and Load balancing
From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
Date: Thu, 31 Jan 2008 13:44:01 -0800
In-Reply-To: <6CC6CC12-6781-466E-9FFF-D554380BCDD1@mit.edu>
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
References: <s7a1c12d.064@greatowl.kennesaw.edu> <E2FAF7BC-1883-4BDF-923A-7B3E8F124B6C@jpl.nasa.gov> <47A21FFC.5080709@rpi.edu> <6CC6CC12-6781-466E-9FFF-D554380BCDD1@mit.edu>
Reply-To: heimdal-discuss@sics.se, "Henry B. Hotz" <hotz@jpl.nasa.gov>


On Jan 31, 2008, at 1:16 PM, Ken Raeburn wrote:

> On Jan 31, 2008, at 14:22, Andrew Bacchi wrote:
>> I agree with Henry that it's hard to overload a modern server.   
>> I'm doing over 1 million hits per day on my primary kdc and not  
>> having any recurring problems.
>>
>> You could simply create two versions of your krb5.conf file each  
>> with a different primary kdc
>> kdc = server1
>> kdc = server2
>>
>> -------------------
>>
>> kdc = server2
>> kdc = server1
>>
>> Then split the distribution to your clients.
>
> Or, skip the config file entries, and put SRV records into your  
> zone file, listing equal priorities; the clients should  
> automatically split the load then (though you can't break it down  
> by site easily to have groups of clients default to their nearest  
> KDC first).  Neither MIT nor Heimdal currently appear to implement  
> the weight field, but in theory you ought to even be able to  
> specify an uneven distribution of load if you wanted... maybe someday.
>
> Ken

Hmmm.  Sam said the weight was supported (in MIT).  Just no  
comparable spec in the config file.

------------------------------------------------------------------------
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or hbhotz@oxy.edu

Follow-Ups:
- Re: Kerberos and Load balancing
  - From: Ken Raeburn <raeburn@MIT.EDU>

References:
- Kerberos and Load balancing
  - From: "Annelise Stighall" <astighal@kennesaw.edu>
- Re: Kerberos and Load balancing
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: Kerberos and Load balancing
  - From: Andrew Bacchi <bacchi@rpi.edu>
- Re: Kerberos and Load balancing
  - From: Ken Raeburn <raeburn@MIT.EDU>

Prev by Date: Re: Kerberos and Load balancing
Next by Date: Re: Kerberos and Load balancing
Prev by thread: Re: Kerberos and Load balancing
Next by thread: Re: Kerberos and Load balancing
Index(es):
- Date
- Thread