12 Configuring Oracle Traffic Director for an Enterprise Deployment
When you configure the web tier, you have the option of using Oracle Traffic Director to route requests to the application tier, rather than Oracle HTTP Server. The procedure to configure Oracle Traffic Director is different from the procedure to configure Oracle HTTP Server. If you decide to use Oracle Traffic Director, then you must install Oracle Traffic Director on both the web tier hosts and the application Tier hosts. Then, you extend the enterprise deployment domain to include Oracle Traffic Director.
Before you configure Oracle Traffic Director, be sure to review Understanding the Web Tier.
Note:
If you plan to configure Oracle Managed File Transfer, then you must configure Oracle Traffic Director to route FTP and SFTP requests over TCP. For more information, see Configuring Oracle Managed File Transfer in an Enterprise Deployment.
- About Oracle Traffic Director
Oracle Traffic Director (OTD) is a software load balancer for load balancing HTTP/S and TCP traffic to application tier. The application-tier servers that receive the requests from Oracle Traffic Director are referred to as Oracle Traffic Director origin servers. Origin servers can be application servers, web servers, Oracle Managed File Transfer, LDAP directory servers, MLLP servers, or any type of TCP server. - About Oracle Traffic Director in an Enterprise Deployment
Oracle Traffic Director can be used as an alternative to Oracle HTTP Server on the web tier. Similar to Oracle HTTP Server, it can route HTTP requests from the front-end load balancer to the application-tier WebLogic Managed Servers. However, only Oracle Traffic Director provides TCP load balancing and failover. - Variables Used When Configuring Oracle Traffic Director
The procedures for installing and configuring Oracle Traffic Director reference use a series of variables that you can replace with the actual values used in your environment. - Installing Oracle Traffic Director in Collocated Mode on the Application Tier Hosts
You can install Oracle Traffic Director by using an interactive graphical wizard provided by the Oracle Universal Installer. To configure Oracle Traffic Director for high availability, perform the steps on two mount points. - Installing Oracle Traffic Director in Standalone Mode on the Web Tier Hosts
You can install Oracle Traffic Director by using an interactive graphical wizard provided by the Oracle Universal Installer. This standalone installation is performed on the two WEBHOST systems that is used in enterprise deployment. - Extending the Domain with Oracle Traffic Director System Components
You need to perform certain tasks in order to extend the enterprise deployment domain with the Oracle Traffic Director software. - Propagating the Domain and Starting the Node Manager on the Web Tier Hosts
After you have installed Oracle Traffic Director on the application tier hosts and you have extended the domain with Oracle Traffic Director system components, you can then copy the domain configuration to the hosts on the web tier and configure the Node Manager. - Creating an Oracle Traffic Director Configuration
An Oracle Traffic Director configuration is a collection of metadata that you can use to instantiate Oracle Traffic Director. Oracle Traffic Director reads the configuration when a server instance starts on the web tier hosts and while processing client requests. - Starting the Oracle Traffic Director Default Instance
You can use the Oracle Traffic Director configuration to create instances of Oracle Traffic Director servers on one or more administration nodes. - Defining Oracle Traffic Director Virtual Servers for an Enterprise Deployment
By default, when you created the configuration, a default virtual server for HTTP access was created, namededg_config
. However, each enterprise deployment uses additional Oracle Traffic Director virtual servers and origin-server pools for specific purposes. For example, each time you extend the domain with a new Fusion Middleware product, there are additional virtual servers that must to be defined. - Creating a TCP Proxy for an Enterprise Deployment
Oracle MFT uses a TCP proxy to route SFTP requests to the backend MFT WLS servers. - Creating a Failover Group for Virtual Hosts
A failover group ensures high availability of Oracle Traffic Director instances by combining two Oracle Traffic Director instances.
Parent topic: Configuring the Enterprise Deployment
About Oracle Traffic Director
Oracle Traffic Director (OTD) is a software load balancer for load balancing HTTP/S and TCP traffic to application tier. The application-tier servers that receive the requests from Oracle Traffic Director are referred to as Oracle Traffic Director origin servers. Origin servers can be application servers, web servers, Oracle Managed File Transfer, LDAP directory servers, MLLP servers, or any type of TCP server.
Starting with Oracle Fusion Middleware 12c (12.2.1), in addition to being available for use with the engineered systems (Oracle Exalogic running either Oracle Linux or Oracle Solaris or Oracle SuperCluster running Oracle Solaris), Oracle Traffic Director is available for customers with the Oracle WebLogic Server Multi-tenancy or Oracle WebLogic Server Continuous Availability add-on options.
For more information about OTD, see Overview of Oracle Traffic Director in Administering Oracle Traffic Director.
About Oracle Traffic Director in an Enterprise Deployment
Oracle Traffic Director can be used as an alternative to Oracle HTTP Server on the web tier. Similar to Oracle HTTP Server, it can route HTTP requests from the front-end load balancer to the application-tier WebLogic Managed Servers. However, only Oracle Traffic Director provides TCP load balancing and failover.
If you configure Managed File Transfer, which requires the routing and load balancing of the SFTP requests), then you must use Oracle Traffic Director.
In a enterprise deployment, you install Oracle Traffic Director on both the web tier hosts and the application Tier hosts, because Oracle Traffic Director is added to the domain in the application-tier hosts, for system management purposes.
On each application tier host, you install Oracle Traffic Director in collocated mode, in the same Oracle home where you installed the application tier software.
On each web tier host, you install Oracle Traffic Director in standalone mode.
You then use the Fusion Middleware Configuration Wizard to extend the application-tier domain to include the Oracle Traffic Director system components. This allows the Oracle Traffic Director components to be managed by the same Administration Server that is used to control the Managed Servers in the domain.
The following topics provide specific instructions for using the Oracle Traffic Director configuration required for Managed File Transfer. However, the procedures in these topics can be used to configure Oracle Traffic Director as the web tier for other components in the enterprise deployment topology.
Variables Used When Configuring Oracle Traffic Director
The procedures for installing and configuring Oracle Traffic Director reference use a series of variables that you can replace with the actual values used in your environment.
The following directory location variables are used in these procedures:
-
WEB_ORACLE_HOME
-
ASERVER_HOME
-
MSERVER_HOME
-
WEB_DOMAIN_HOME
-
JAVA_HOME
-
NM_HOME
-
WEB_APPLICATION_HOME
For more information about file system directories and the directory variables, see File System and Directory Variables Used in This Guide.
In addition, you reference the virtual IP (VIP) address — ADMINVHN that is defined in Reserving the Required IP Addresses for an Enterprise Deployment.
-
ADMINVHN
Actions in this chapter are performed on the following host computers:
-
APPHOST1
-
APPHOST2
-
WEBHOST1
-
WEBHOST2
Note:
Note that for this chapter, APPHOST1 and APPHOST2 provide a more generic variable for the application tier hosts. This is because, depending upon the domain that you create, the host name variable varies.
For example, if you configure Oracle Traffic Director for an Oracle SOA Suite domain, APPHOST1 is the same as SOAHOST1. However, if you configure Oracle Traffic Director for an Oracle Managed File Transfer domain, which is typically configured in its own domain, then APPHOST1 is the same as MFTHOST1.
Installing Oracle Traffic Director in Collocated Mode on the Application Tier Hosts
You can install Oracle Traffic Director by using an interactive graphical wizard provided by the Oracle Universal Installer. To configure Oracle Traffic Director for high availability, perform the steps on two mount points.
Starting the Oracle Traffic Director Installer
To start the installation program:
When the installation program appears, you are ready to begin the installation.
Navigating the Oracle Traffic Director Installation Screens (Collocated)
The following table describes how to use the installer screens to install Oracle Traffic Director in a colocated mode on the first application tier host.
Note:
Installing Oracle Traffic Director in the rest of the application tier is also required in these cases:
-
If you have planned any domain extensions, you might encounter errors when you unpack the domain in the rest of application hosts, due to missing required components.
-
In the application hosts where AdminServer can fail over because OTD components are required by the AdminServer.
If you need additional help with any of the installation screens, click the screen name.
Screen | Description |
---|---|
On UNIX operating systems, if this is the first time that you are installing any Oracle product on this host, this screen appears. Specify the location where you want to create your central inventory. Make sure that the operating system group name selected on this screen has write permissions to the central inventory location. For more information about the central inventory, see Oracle Fusion Middleware Installing Software with the Oracle Universal Installer in Installing Software with the Oracle Universal Installer. Note: Oracle recommends that you configure the central inventory directory on the products shared volume. Example: You may also need to execute the |
|
This screen introduces you to the product installer. Click Next. |
|
Select whether you want to receive automatic updates for this product. |
|
Enter the path to the existing application tier Oracle home. Runtime processes cannot write to this directory. For the purposes of this enterprise deployment, enter the value of the ORACLE_HOME variable that is listed in Table 7-2. |
|
Use this screen to select the type of installation and consequently, the products and feature sets you want to install. Select Collocated OTD (Managed through WebLogic server). |
|
JDK Selection |
For the value of JDK Home, enter the value of JAVA_HOME that you set when you install the JDK software. |
The installer analyzes the host computer to ensure that the prerequisites are fulfilled. The results of the prerequisite checks are displayed on this screen. If a prerequisite check fails, an error or warning message is displayed. You can do the following:
Click Next to continue. |
|
This screen displays the Oracle home directory that you specified earlier. It also indicates the amount of disk space that is used for the installation and the free space available. Review the information on this screen. To save the settings specified so far in the installation wizard in a text file (called a response file), click Save. If necessary, you can use the response file to perform the same installation from the command line. Click Install to begin the installation. For more information about silent or command line installation, see "Using the Oracle Universal Installer in Silent Mode" in Installing Software with the Oracle Universal Installer. |
|
This screen shows the progress and status of the installation process. If you want to cancel the installation, click Cancel. The files that were copied to your system before you canceled the installation remains on the system; you should remove them manually. Click Next to continue. |
|
Click Finish. |
Installing Oracle Traffic Director in Standalone Mode on the Web Tier Hosts
You can install Oracle Traffic Director by using an interactive graphical wizard provided by the Oracle Universal Installer. This standalone installation is performed on the two WEBHOST systems that is used in enterprise deployment.
Installing a Supported JDK
Oracle Fusion Middleware requires that a certified Java Development Kit (JDK) is installed on your system.
Locating and Downloading the JDK Software
To find a certified JDK, see the certification document for your release on the Oracle Fusion Middleware Supported System Configurations page.
After you identify the Oracle JDK for the current Oracle Fusion Middleware release, you can download an Oracle JDK from the following location on Oracle Technology Network:
http://www.oracle.com/technetwork/java/index.html
Be sure to navigate to the download for the Java SE JDK.
Parent topic: Installing a Supported JDK
Installing the JDK Software
Oracle Fusion Middleware requires that you install a certified Java Development Kit (JDK) on your system.
You must install the JDK in the local storage device for each of the web tier host computers. The web tier host computers, which reside in the DMZ, do not necessarily have access to the shared storage on the application tier.
For more information about the recommended location for the JDK software, see the Understanding the Recommended Directory Structure for an Enterprise Deployment.
The following example describes how to install a recent version of JDK 1.8.0_131.
Parent topic: Installing a Supported JDK
Starting the Oracle Traffic Director Installer
To start the installation program:
When the installation program appears, you are ready to begin the installation.
Navigating the Oracle Traffic Director Installation Screens (Standalone)
The installation program displays a series of screens, in the order that is listed in the following table.
If you need additional help with any of the installation screens, click the screen name.
Screen | Description |
---|---|
Installation Inventory Setup |
On UNIX operating systems, if this is the first time that you are installing any Oracle product on this host, this screen appears. Specify the location where you want to create your central inventory. Make sure that the operating system group name selected on this screen has write permissions to the central inventory location. For more information about the central inventory, see Using the Oracle Universal Installer in Installing Software with the Oracle Universal Installer Note: Oracle recommends that you configure the central inventory directory within the products directory. Example: You may also need to execute the |
Click Next. |
|
Select whether you want to receive automatic updates for this product. |
|
Use this screen to specify the location of your Oracle home directory. Oracle home is the directory in which software binaries for Oracle products are stored.
Note: Runtime processes cannot write to this directory. |
|
Use this screen to select the type of installation and consequently, the products and feature sets that you want to install. Select Standalone OTD (Managed independently of WebLogic server). |
|
JDK Selection |
For the value of JDK Home, enter the value of JAVA_HOME that you set when you install the JDK software. |
The installer analyzes the host computer to ensure that the prerequisites are fulfilled. The results of the prerequisite checks are displayed on this screen. If a prerequisite check fails, an error or warning message is displayed. You can do the following:
Click Next. |
|
This screen displays the Oracle home directory that you specified earlier. It also indicates the amount of disk space that is used for the installation and the free space available. Review the information on this screen. To save the settings specified so far in the installation wizard in a text file (called a response file), click Save. If necessary, you can use the response file to perform the same installation from the command line. Click Install to begin the installation. For more information about silent or command line installation, see "Using the Oracle Universal Installer in Silent Mode" in Installing Software with the Oracle Universal Installer. |
|
This screen shows the progress and status of the installation process. If you want to cancel the installation, click Cancel. The files that were copied to your system before you canceled the installation remains on the system; you should remove them manually. Click Next. |
|
Click Finish. |
Verifying the installation on the Web Tier Hosts
After you complete the installation and the post-installation steps, use the ls --format=single-column
command to verify that the Oracle home directory contains the following directories:
bin
cdata
cfgtoollogs
crs
css
cv
has
install
inventory
jlib
ldap
lib
network
nls
OPatch
oracle_common
oracore
oraInst.loc
otd
oui
perl
plsql
plugins
precomp
QOpatch
racg
rdbms
slax
sqlplus
srvm
webgate
wlserver
xdk
Extending the Domain with Oracle Traffic Director System Components
You need to perform certain tasks in order to extend the enterprise deployment domain with the Oracle Traffic Director software.
Starting the Configuration Wizard
Note:
If you have added any customizations directly to the start scripts in the domain, those customizations are overwritten by the configuration wizard. To customize server startup parameters that apply to all servers in a domain, create a file called setUserOverridesLate.sh
and configure it. For example, add custom libraries to the WebLogic Server classpath, specify additional JAVA command-line options for running the servers, or specify additional environment variables. Any customizations you add to this file are preserved during domain upgrade operations, and are carried over to the remote servers when you use the Pack
and Unpack
commands.
cd ORACLE_HOME/oracle_common/common/bin ./config.sh
Navigating the Configuration Wizard Screens to Extend the Domain
After you start the Configuration Wizard, follow these instructions to extend the existing domain.
-
Task 1, "Selecting the Domain Type and Domain Home Location"
-
Task 2, "Selecting the Configuration Templates for Oracle Traffic Director"
-
Task 3, "Providing the GridLink Oracle RAC Database Connection Details"
-
Task 6, "Adding System Components for Oracle Traffic Director"
-
Task 7, "Creating WebLogic Server Machines for Oracle Traffic Director"
-
Task 8, "Reviewing Your Configuration Specifications and Configuring the Domain"
-
Task 9, "Writing Down Your Domain Home and Administration Server URL"
- Task 1 Selecting the Domain Type and Domain Home Location
-
On the Configuration Type screen, select Update an existing domain.
In the Domain Location field, enter the value assigned to the ASERVER_HOME variable.
Note:
-
For more information about the domain home directory, see Choosing a Domain Home in Planning an Installation of Oracle Fusion Middleware.
-
For more information about the other options on this screen, see Configuration Type in Creating WebLogic Domains Using the Configuration Wizard.
- For more information about the web tier and the DMZ, see Understanding the Firewalls and Zones of a Typical Enterprise Deployment.
-
For more information about the ASERVER_HOME directory variable, see File System and Directory Variables Used in This Guide.
Click Next.
-
- Task 2 Selecting the Configuration Templates for Oracle Traffic Director
-
On the Templates screen, select Oracle Traffic Director -12.2.1.3.0 [otd]
Tip:
More information about the options on this screen can be found in Templates in Creating WebLogic Domains Using the Configuration Wizard.
Click Next.
- Task 3 Providing the GridLink Oracle RAC Database Connection Details
-
No new datasources must be created in the GridLink Oracle RAC Component Schema screen.
Click Next.
- Task 4 Testing the JDBC Connections
-
In the JDBC Component Schema Test screen, test the data source connections that you have configured.
Review that all the tests are successful and click Next.
- Task 5 Selecting Advanced Configuration Options
-
To complete the domain configuration for the topology, select the following option on the Advanced Configuration screen:
System Components
Click Next.
- Task 6 Adding System Components for Oracle Traffic Director
-
On the System Components screen, click Next.
It is not necessary to configure the system components in the configuration wizard. For instructions to create the Oracle Traffic Director instances required for the enterprise deployment, see Starting the Oracle Traffic Director Instances.
- Task 7 Creating WebLogic Server Machines for Oracle Traffic Director
-
Use the Machines screen to create two new machines in the domain. A machine is required in order for the Node Manager to be able to start and stop the servers.
-
Select the Unix Machine tab.
-
Click the Add button to create two new Unix machines, one for each OTD instances.
-
Specify
WEBHOSTn
in the Node Manger Listen Address field and5556
in the Node Manager Listen Port field, for each machine. - Click Next.
-
- Task 8 Reviewing Your Configuration Specifications and Configuring the Domain
-
The Configuration Summary screen contains the detailed configuration information for the domain that you are about to extend. Review the details of each item on the screen and verify that the information is correct.
If you need to make any changes, you can go back to any previous screen either by using the Back button or by selecting the screen in the navigation pane.
Click Update to execute the domain extension.
In the Configuration Progress screen, click Next when it finishes.
Tip:
More information about the options on this screen can be found in Configuration Summary in Creating WebLogic Domains Using the Configuration Wizard.
- Task 9 Writing Down Your Domain Home and Administration Server URL
-
The Configuration Success screen shows the following items about the domain that you configured:
-
Domain Location
-
Administration Server URL
You must make a note of both items as you need them later; the domain location is needed to access the scripts used to start the Administration Server.
Click Finish to dismiss the configuration wizard.
-
- Task 10 Start the Administration Server
-
If the Admin Server was running during the domain extension process, restart the server to ensure the changes that you have made to the domain have been applied.
Note:
After the domain is extended to include OTD, all applications tier nodes include the OTD installation even if they do not use OTD. This addition is required for home consistency and to maintain the required script references across all nodes.
Propagating the Domain and Starting the Node Manager on the Web Tier Hosts
After you have installed Oracle Traffic Director on the application tier hosts and you have extended the domain with Oracle Traffic Director system components, you can then copy the domain configuration to the hosts on the web tier and configure the Node Manager.
- Packing Up the Domain on the Application Tier
- Unpacking the Domain Configuration on the Web Tier Hosts
- Configuring and Starting Node Manager on the Web Tier Hosts
Oracle Traffic Director runs alone on the web tier hosts, and therefore, it is not necessary to create a per node Node Manager for each web tier host. Instead, Oracle Traffic Director nodes use the default per domain Node Manager.
Packing Up the Domain on the Application Tier
Use the following steps to create a template JAR file that contains the domain configuration information:
Unpacking the Domain Configuration on the Web Tier Hosts
Configuring and Starting Node Manager on the Web Tier Hosts
Oracle Traffic Director runs alone on the web tier hosts, and therefore, it is not necessary to create a per node Node Manager for each web tier host. Instead, Oracle Traffic Director nodes use the default per domain Node Manager.
Oracle also recommends that you use the SSL Node Manager in the DMZ for security reasons.
To create the required Node Manager configuration and start Node Manager on each web tier host, follow these steps. Repeat for each web tier host.
Creating an Oracle Traffic Director Configuration
An Oracle Traffic Director configuration is a collection of metadata that you can use to instantiate Oracle Traffic Director. Oracle Traffic Director reads the configuration when a server instance starts on the web tier hosts and while processing client requests.
To create a configuration:
Note:
The following are automatically created after you create the configuration:
-
One virtual servers named
edgconfig
. -
One instance on each of the hosts that are defined for the configuration.
Starting the Oracle Traffic Director Default Instance
You can use the Oracle Traffic Director configuration to create instances of Oracle Traffic Director servers on one or more administration nodes.
To start the Oracle Traffic Director default instance:
Defining Oracle Traffic Director Virtual Servers for an Enterprise Deployment
By default, when you created the configuration, a default virtual server for HTTP access was created, named edg_config
. However, each enterprise deployment uses additional Oracle Traffic Director virtual servers and origin-server pools for specific purposes. For example, each time you extend the domain with a new Fusion Middleware product, there are additional virtual servers that must to be defined.
For a complete list of the virtual servers required for the enterprise deployment, see Summary of the Virtual Servers Required for an Enterprise Deployment
For general information about creating Oracle Traffic Director virtual servers, see Creating a Virtual Server in the Fusion Middleware Administering Oracle Traffic Director.To create and configure virtual servers, you must create the origin server pools and then define the virtual servers.
Creating the Required Origin Server Pools
Table 12-1 lists the origin server pools required by the Fusion Middleware products. You can use this information as you create the origin server pools by using the Oracle Traffic Director management pages in Fusion Middleware Control.
Table 12-1 Origin Server Pools Required for Each Product
Product | Origin-Server Pool | Type | Origin Servers |
---|---|---|---|
All products; one for each domain |
admin-pool |
HTTP |
|
Oracle Web Services Manager |
wsm-pool |
HTTP |
|
Oracle SOA Suite Business Process Management Oracle SOA Suite for Healthcare |
soa-pool |
HTTP |
|
Oracle Enterprise Scheduler |
ess-pool |
HTTP |
|
Business Activity Monitoring |
bam-pool |
HTTP |
|
Oracle Service Bus |
osb-pool |
HTTP |
|
Oracle Managed File Transfer |
mft-pool |
HTTP |
|
Oracle Managed File Transfer |
mft-sftp-pool |
TCP |
|
Oracle SOA Suite for Healthcare |
healthcare-tcp-pool |
TCP |
|
Note:
-
*7022 is the default port that is used for the SFTP listeners on the Managed File Transfer servers.
-
Configure the port numbers appropriately, as assigned for your static or dynamic cluster. Dynamic clusters with the Calculate Listen Port option selected will have incremental port numbers for each dynamic managed server that you create.
Creating the Required Virtual Servers
Table 12-2 lists the virtual servers that are required by the Fusion Middleware products. You can use this information as you create the required virtual servers by using the Oracle Traffic Director management pages in Fusion Middleware Control.
Table 12-2 Virtual Servers Required for Each Product
Product | Virtual Server Name | Host Served | Pool | Listener |
---|---|---|---|---|
All products; one for each domain |
admin.example.com |
admin.example.com |
admin-pool |
* |
Oracle SOA Suite Business Process Management Oracle B2B Oracle SOA Suite for Healthcare |
soa.example.com |
soa.example.com |
soa-pool |
* |
Oracle Enterprise Scheduler |
soa.example.com |
soa.example.com |
ess-pool |
* |
Business Activity Monitoring |
soa.example.com |
soa.example.com |
bam-pool |
* |
Oracle SOA Suite Business Process Management |
soainternal.example.com |
WEBHOST1-V1* |
soa-pool |
* |
Oracle Web Services Manager |
soainternal.example.com |
WEBHOST1-V1* |
wsm-pool |
* |
Oracle Enterprise Scheduler |
soainternal.example.com |
WEBHOST1-V1* |
ess-pool |
* |
Business Activity Monitoring |
soainternal.example.com |
WEBHOST1-V1* |
bam-pool |
* |
Oracle Service Bus |
osb.example.com |
osb.example.com |
osb-pool |
* |
Oracle Service Bus |
osbinternal.example.com |
WEBHOST2-V1* |
osb-pool |
* |
Oracle Managed File Transfer |
mft-http.example.com |
mft.example.com |
mft-pool |
* |
Note:
*WEBHOST1-V1
and WEBHOST2-V1
are the VIPS that are used for the corresponding Oracle Traffic Director failover groups.
Creating the Required Virtual Server Routes
Table 12-3 lists the virtual server routes (or URIs) that are required by the Fusion Middleware products. You can use this information as you create the required routes by using the Oracle Traffic Director management pages in Fusion Middleware Control.
Table 12-3 Virtual Server Routes Required for Each Product
Product | Virtual Server Name | Route | Origin-server pool | URIs |
---|---|---|---|---|
All products; one for each domain |
admin.example.com |
admin-route |
admin-pool |
|
Oracle Service Bus |
admin.example.com |
osbadmin-route |
admin-pool |
|
Oracle Web Services Manager |
soainternal.example.com |
wsm-route |
wsm-pool |
|
Oracle SOA Suite |
soa.example.com |
soa-route |
soa-pool |
|
Oracle Service Bus |
osb.example.com |
osb-route |
osb-pool |
|
Business Process Management |
soa.example.com |
soa-route |
soa-pool |
|
Oracle Enterprise Scheduler |
soa.example.com |
ess-route |
ess-pool |
|
Business Activity Monitoring |
soa.example.com |
bam-route |
bam-pool |
|
Oracle B2B |
soa.example.com |
soa-route |
soa-pool |
|
Oracle SOA Suite for Healthcare |
soainternal.example.com |
soa-route |
healthcare-pool |
|
Oracle Managed File Transfer |
mft-http-example.com |
mft-route |
mft-pool |
|
Enabling SSL Passthrough
In the enterprise deployment, Topology SSL is terminated at the hardware load balancer and passed through to Oracle Traffic Director by using the HTTP protocol.
Oracle Traffic Director requires extra configuration steps to ensure that any application redirects occur correctly.
To ensure that application redirects occur correctly, perform the following steps for each route that is associated with a virtual server where SSL is used and terminated at LBR, which are the following virtual servers:
-
soa.example.com
-
osb.example.com
-
mft-http.example.com
Also, you must configure OTD to insert a header that notifies the origin servers that the client is using SSL. Follow these steps for each virtual server that is using LBR as SSL terminator:
-
Log in to SOAHOST1.
-
Go to
ASERVER_HOME/config/fmwconfig/components/OTD/edgconfig/config
. -
Edit the
<virtual_server_name>-obj.conf
file. Forsoa.example.com
virtual server, editsoa.example.com-obj.conf
. -
Add the following after <Object name=”default”>:
NameTrans fn="set-variable" insert-headers="wl-proxy-ssl: true"
With this directive, you configure OTD to insert the header
wl-proxy-ssl : true
to the origin servers for this virtual server. -
Repeat the steps with osb.example.com virtual server configuration file and mft-http.example.com virtual server configuration file.
-
Restart the AdminServer.
-
Restart the OTD instances.
Creating a TCP Proxy for an Enterprise Deployment
Oracle MFT uses a TCP proxy to route SFTP requests to the backend MFT WLS servers.
Table 12-4 Summary of the TCP Proxies
Product | TCP Proxy Name | Origin Server Pool | TCP Listener Name | TCP Listener Port |
---|---|---|---|---|
Oracle Managed File Transfer |
mft-sftp.example.com |
mft-sftp-pool |
mft-ftp-listener |
*:7022 |
Oracle SOA Suite for Healthcare |
soahealthcare.example.com |
healtchare-tcp-pool |
healthcare-tcp-listener |
*:9500 |
Creating a Failover Group for Virtual Hosts
A failover group ensures high availability of Oracle Traffic Director instances by combining two Oracle Traffic Director instances.
When a request is sent to one of the virtual hosts in the EDG, the front end load balancer redirects the request to the IP address that has been configured to load balance requests. This IP address is enabled on one of the OTD instances but it can be migrated to another OTD instance should a failure occur. You can combine two Oracle Traffic Director instances in a failover group represented by one or two virtual IP (VIP) addresses. You can do this by creating an active-passive failover group for the IP address. This failover group lists a primary and a number of secondary instances.
The following instructions explain how to create failover groups for the IP addresses associated with the different virtual servers in the configuration. The failover groups for the MFT OTD IP addresses are optional since the load balancer fails over requests between the two Oracle Traffic Director instances, but they provide faster failure detection and failover than the typical load balancer monitors.
For more information about creating failover groups or other high availability configurations for Oracle traffic Director, see Configuring Oracle Traffic Director for High Availability in the Administrator's Guide.
- Creating Failover Groups
You can implement a highly available pair of Oracle Traffic Director instances by creating failover groups.
Creating Failover Groups
You can implement a highly available pair of Oracle Traffic Director instances by creating failover groups.
Before you begin:
-
Decide the unique VIP address that you want to assign to the failover group.
-
The VIP addresses should belong to the same subnet as that of the nodes in the failover group.
-
The VIP addresses must be accessible to clients.
Note:
To configure an active-active pair of Oracle Traffic Director instances, you must create two failover groups with the same instances, but with a distinct VIP address for each failover group, and with the primary and backup node roles reversed. -
-
Identify the Oracle Traffic Director nodes that you want to configure as primary and backup nodes in the failover group. The nodes should be in the same subnet.
Note that the nodes that you select have Oracle Traffic Director instances present on them for the specified configuration.
-
Identify the network interface for each node.
For each network interface that is currently up on the host, the administration server compares the network part of the interface's IP address with the network part of the specified VIP. The first network interface that results in a match is used as the network interface for the VIP.
For this comparison, depending on whether the VIP specified for the failover group is an IPv4 or IPv6 address, the administration server considers only those network interfaces on the host that are configured with an IPv4 or IPv6 address, respectively.
-
You can bind to a VIP IP address within the HTTP listener by performing a system configuration that allows you to bind to a non-existing address, as a sort of forward binding. Perform one of the following system configurations:
echo 1 > /proc/sys/net/ipv4/ip_nonlocal_bind
or
sysctl net.ipv4.ip_nonlocal_bind=1
(change in
/etc/sysctl.conf
to keep after a reboot)Make sure that the IP addresses of the listeners in the configuration for which you want to create a failover group are either an asterisk (*) or the same address as the VIP. Otherwise, requests sent to the VIP are not routed to the virtual servers.
-
Make sure that the router ID for each failover group is unique. For every subsequent failover group that you create, the default router ID is decremented by one: 254, 253, and so on.
To create a failover group by using the Fusion Middleware Control, do the following:
Parent topic: Creating a Failover Group for Virtual Hosts