The front end caching nodes are just haproxy 1.9 (which has very simple caching now) which precluded my need for nginx. Those nodes have strongswan in transport mode using a simple pre-shared key. The backend is just a simple apache 2.4 server.
DNS is just NSD with multiple IP's in some of the A records. I don't do any GSLB or Anycast, nothing exciting there. The browser will use whichever IP answers which means the end users could end up on any nodes. I could get fancy and use GeoIP mapping to keep most requests on the same continent. Maybe I should set that up this weekend.
The front end caching nodes are just haproxy 1.9 (which has very simple caching now) which precluded my need for nginx. Those nodes have strongswan in transport mode using a simple pre-shared key. The backend is just a simple apache 2.4 server.
DNS is just NSD with multiple IP's in some of the A records. I don't do any GSLB or Anycast, nothing exciting there. The browser will use whichever IP answers which means the end users could end up on any nodes. I could get fancy and use GeoIP mapping to keep most requests on the same continent. Maybe I should set that up this weekend.