Layer 4 Load Balancing Tunnel Mode

The tunnel mode looks like the Direct Server Return mode, except that traffic between the load-balancer and the server can be routed.

The load-balancer encapsulates the request in an IP tunnel to the server.
The server recover the client request from the loadbalancer, process it and forward the response directly to the client.

TCP connection overview

layer4_tunnel_tcp_connection
The loadbalancer takes client requests then encapsulate them into an IP tunnel to forward them to the server.

Data flow

layer4_tunnel_data_flow
The client traffic between the server and the load-balancer is tunneled and can be routed between both of them.
The server will answer directly to the client.

Pros and cons

Pros

backends from multiple datacenters can be used
load-balancer network bandwidth is not a bottleneck anymore
total output bandwidth is the sum of each backend bandwidth

Cons

requires patched backend to be able to tunnel IP traffic
no layer 7 advanced features are available

When use this architecture?

when the only way to reach backends is routing.
where no intelligence is required
when output capacity of the load-balancer could be the bottleneck

Links

SHARE THIS ARTICLE

Produktübersicht

HAProxy One

Success Stories

Lösungsübericht

VORGESTELLTES WEBINAR

Dokumentation

Produktübersicht

Learning Hub

Use Cases

Expertenunterstützung

Community

Vorgestelltes Webinar

Partner

Unternehmen

Verbinden Sie Sich Mit Uns

Veranstaltungen

TCP connection overview

Data flow

Pros and cons

Pros

Cons

When use this architecture?

Links

RELATED STORIES

Layer 4 and Layer 7 Proxy Mode

Packetshield: quand votre load-balancer vous protège contre les DDOS!

Microsoft Remote Desktop Services (RDS) Load-Balancing

Get the latest blog posts in your inbox

What’s New in HAProxy Data Plane API 2.6

The HAProxy Guide to Multilayered Security

HAProxy Enterprise

Connect With Us

Stay in the loop

Welcome