Keepalived + Haproxy performance, apache or nginx?

Question

I have a question about Keepalived + Haproxy. At work I am assigned to deploy a redundant web server with Keepalived and Haproxy. Our setup at the moment is as follows:

Apache (as load balancer) + Modsecurity (waf) ------> 3 x IIS (Webserver, Windows Server 2012)

The issue here is, Apache is getting slower in load balancing the requests.

Should I use:

Scenario 1:

Apache and Modsecurity as ssl offload and waf. keepalived + haproxy for redundancy and load balancer.

Scenario 2:

Keepalived (redundancy) ----> 2 x Apache (load balancer) + Modsecurity (waf) ------> 3 x IIS

Screnario 3:

Using nginx as the SSL offload , and Modsecurity as waf + Keepalived and Haproxy.

Which is better performance wise? Thx before :)

score -1 · Answer 1 · answered Mar 08 '15 at 14:20

-1

I have the fourth scenario with fewer layers : Keepalived and Haproxy ( Haproxy also works as SSL offload) => IIS ( IIS with WAF installed) . I see that Modsecurity support IIS but I haven't used before. Please well-testing before applying.

In case that it's hard to install WAF in IIS due to some reasons, I prefer your Screnario 3.

answered Mar 08 '15 at 14:20

Summer Nguyen

214
3
10

1

why do you vote down ? I need the reason for avoiding next time. Thanks – Summer Nguyen Mar 10 '15 at 15:20

Keepalived + Haproxy performance, apache or nginx?

1 Answers1