docs: add high availability article #173
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,40 @@ | ||
| # Deploying a Highly Available zot Registry | ||
|
|
||
| > :point_right: A highly available zot registry can be easily implemented using zot's registry synchronization feature. | ||
|
|
||
| In the zot configuration, the `sync` extension allows a zot instance to mirror another zot instance with various container image download policies, including on-demand and periodic downloads. You can use the zot `sync` function combined with a load balancer such as [HAProxy](https://www.haproxy.com) to implement a highly available registry. | ||
|
|
||
| Two failover configurations are possible: | ||
|
|
||
| * Active/active | ||
|
|
||
| Registry requests are load-balanced between two zot instances, each of which mirrors the other. | ||
|
|
||
| * Active/standby | ||
|
|
||
| Registry requests are sent by the load balancer to the active zot instance, while a standby instance mirrors the active. If the load balancer detects a failure of the active instance, it then sends requests to the standby instance. | ||
|
|
||
| > :pencil2: The highly available zot registry described in this article differs from [zot clustering](clustering.md). Although zot clustering provides a level of high availability, the instances share common storage, whose failure would affect all instances. In the method described in this article, each instance has its own storage, providing an additional level of safety. | ||
|
|
||
| For details of configuring the `sync` extension, see [OCI Registry Mirroring With zot](mirroring.md). | ||
|
|
||
| ## Configuring an active/active registry | ||
|
|
||
| An active/active zot registry can be implemented between two zot instances by configuring the `sync` extension in each instance to point to the other instance. In this scheme: | ||
|
|
||
| * a load balancer such as HAProxy or a [DNS-based routing](https://coredns.io/plugins/loadbalance/) scheme is deployed for round-robin load balancing between zot instances | ||
|
There was a problem hiding this comment. Furthermore, one has to manage traffic split (path based routing) so some traffic goes to one instance and rest goes to another. There was a problem hiding this comment. Is this to keep a repo from being fragmented across two instances? |
||
| * each zot instance is configured as a standalone registry with its own storage | ||
| * each zot instance has its `sync` extension enabled to periodically synchronize with the other instance | ||
|
|
||
| With periodic synchronization, a window of failure exists between synchronization actions. For example, if an image is posted to instance A soon after instance B has synchronized with instance A, and then instance A fails, instance B will not have the new image. To minimize this exposure, we recommend keeping the synchronization period as small as practical. | ||
|
|
||
|
|
||
| ## Configuring an active/standby registry | ||
|
|
||
| An active/standby zot registry can be implemented between two zot instances by configuring the `sync` extension in the standby instance to mirror the other instance. In this scheme: | ||
|
|
||
| * a load balancer such as HAProxy is deployed for active/passive load balancing of the zot instances | ||
| * each zot instance is configured as a standalone registry with its own storage | ||
| * the standby zot instance has its `sync` extension enabled to periodically synchronize with (mirror) the active instance | ||
|
|
||
| With periodic synchronization, this scheme is also susceptible to the window of failure described in the active/active case. To minimize this exposure, we recommend keeping the synchronization period as small as practical. | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Would make active/active as second option.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Swapped order of A/S and A/A in the intro and in the configuration sections