How the WEDOS network works after the latest modifications

[gtranslate]

This month we have completed the modifications to our network. Over the last few years, there have been a few improvisations hastily created that would do no good in the future. As we plan to scale everything, we need to have order in such an important part of the infrastructure as the network.

The last adjustment was made after midnight today

If you follow our public transmission charts, you will have noticed that today (15.04.2020) there was an outage on one of the routes.

100 Gbps route 1 through Tabor was dropped on purpose.

Immediately its role was taken over by the 100 Gbps route 2 through Písek.

In sum, no outage was known.

Everything was taken care of by “automatics”, just as if there was a real failure on one of the routes. It was also a dress rehearsal for the new modifications, which we carried out on Monday (13.04.2020).

These routing modifications ensure that absolutely all paths are changed within 200 ms. That’s the worst case scenario. Normally such an operation (changing all routing tables) can take several minutes.

In reality, however, when one branch fails, everything is recalculated in 100 ms, as it was during this planned outage.

We are also preparing the final division of the network between our 2 datacentres. On the outside they will “look” like one, but in reality everything is at least dual and the individual parts are backed up in the other datacenter…

Increase the guaranteed speed of VPS ON from 100 Mbps → 200 Mbps

VPS ON is basically just one virtual machine from the WEDOS Cloud. With the WEDOS Cloud service about to be launched, there was one last thing we needed to do, and that was to prepare the entire network so that customers could use 1 Gbps or more on the WEDOS Cloud 🙂

As you know, we have a lot of connectivity to the internet. All three routes together have 3x 100 Gbps and a fourth is planned and we want to implement it by summer.

But it’s not enough to just have connectivity outside, you have to have the internal network set up for it. Count everything well so that there is no bottleneck somewhere.

After a thorough cleanup, we now know that making 1 Gbps available to WEDOS Cloud customers will not be a problem. If someone wants a few Gbps or more with WEDOS Cloud, that won’t be a problem. Similarly, WEDOS Cloud will be able to use the internal network between servers at speeds of up to 10 Gbps. At the same time, we calculated that we can increase the guaranteed speed for customers with VPS ON from the original 100 Mbps to 200 Mbps.

So if you have a VPS ON you just need to restart your virtual machine and you have 200 Mbps available at once.

Finally there is room for WEDOS Anycast

After the big cleanup, progress could follow. On Tuesday (14.04.2020) we were able to deploy new IP addresses that we obtained from RIPE for the planned WEDOS Anycast service.

You can ping individual gateways – for example 45.138.104.1 or 45.138.105.1. Behind them, an entire HPE Moonshot server rack with 45 powerful physical servers is ready for our first POP 🙂

Fully equipped HPE Moonshot has 45 servers, 2x switches, 4x power supply

So far we are tuning the service mainly for the network, after all that’s what it will be all about 🙂 Next will be connected services for filtering of malicious traffic (IPS/IDS), DNS, proxy, CDN, VPN and more 🙂

This opens up unprecedented possibilities that will make your websites safer, more accessible and faster… We will soon introduce the individual parts and test them.

More playing with the net

There is another small project related to all this. We have started testing the GEO IP fast filtering. Normally, filtering entire ranges of IP addresses can be challenging. If you try to put, say, entire country ranges in .htaccess, it will slow down page loading by a second or more.

We can filter quickly and very efficiently thanks to our protections. After all, you know from previous articles that we can clean up faulty traffic in real time during massive DDoS attacks of tens of Gbps.

GEO IP Filtration is a service where you choose who you allow on your service with us. For example, you can completely filter out the whole world and leave only the Czech Republic and Slovakia. Or do you just keep the EU…

We’re testing it on a few services right now. We have a group of customers who run the Temaspeak communication service, which is vulnerable to various and smaller attacks. We are currently testing filtering teamspeak connections to individual countries with some people there and it works very well.

And this is still and only the beginning 🙂

Conclusion

We are all getting used to pandemic measures. Many of us even started our own individual project or got more involved in testing. For example, we are now testing a new migration script that can move hundreds of gigabytes of WordPress completely automatically and in a very short time.

There is a lot going on with us right now and we are preparing for you. Feel free to share 😉