Configuring Health Checks
You can configure health checks to periodically test the availability and the health of the backend virtual machines (VMs) of a load balancer in order to send requests only to healthy and available ones. You can configure only one health check type per load balancer, specifying the backend VMs port and protocol to check.
Health checks consist in sending regular requests to backend VMs at a specified time interval. A backend VM is considered healthy or unhealthy depending on a specified number of consecutive successful or failed requests. A request is considered failed when a VM does not respond to this request within a specified time period. When a VM previously considered unhealthy becomes healthy again, the load balancer automatically sends requests to it again, with no action on your side.
Configuring Health Checks Using OSC CLI
The UpdateLoadBalancer command modifies the specified attribute of a load balancer. You can specify only one attribute at a time.
You can set a new SSL certificate to an SSL or HTTPS listener of a load balancer.
This certificate replaces any certificate used on the same load balancer and port.
You can also replace the currently enabled policy for the load balancer with another one.
If the PolicyNames
parameter is empty, the currently enabled policy is disabled.
$ osc-cli api UpdateLoadBalancer --profile "default" \
--LoadBalancerName "private-lb-example" \
--HealthCheck '{
"HealthyThreshold": 10,
"CheckInterval": 30,
"Path": "/index.html",
"Port": 8080,
"Protocol": "HTTPS",
"Timeout": 5,
"UnhealthyThreshold": 5
}'
This command contains the following attributes that you need to specify:
-
DryRun
: (optional) If true, checks whether you have the required permissions to perform the action. -
HealthCheck
: (optional) Information about the health check configuration.-
CheckInterval
: The number of seconds between two requests (between5
and600
both included). -
HealthyThreshold
: The number of consecutive successful requests before considering the VM as healthy (between2
and10
both included). -
Path
: (optional) If you use the HTTP or HTTPS protocols, the request URL path. -
Port
: The port number (between1
and65535
, both included). -
Protocol
: The protocol for the URL of the VM (HTTP
|HTTPS
|TCP
|SSL
). -
Timeout
: The maximum waiting time for a response before considering the VM as unhealthy, in seconds (between2
and60
both included). -
UnhealthyThreshold
: The number of consecutive failed requests before considering the VM as unhealthy (between2
and10
both included).
-
-
LoadBalancerName
: The name of the load balancer.
The UpdateLoadBalancer command returns the following elements:
-
LoadBalancer
: Information about the load balancer.-
AccessLog
: Information about access logs.-
IsEnabled
: If true, access logs are enabled for your load balancer. If false, they are not. If you set this to true in your request, theOsuBucketName
parameter is required. -
OsuBucketName
: The name of the OOS bucket for the access logs. -
OsuBucketPrefix
: The path to the folder of the access logs in your OOS bucket (by default, theroot
level of your bucket). -
PublicationInterval
: The time interval for the publication of access logs in the OOS bucket, in minutes. This value can be either5
or60
(by default,60
).
-
-
ApplicationStickyCookiePolicies
: The stickiness policies defined for the load balancer.-
CookieName
: The name of the application cookie used for stickiness. -
PolicyName
: The mnemonic name for the policy being created. The name must be unique within a set of policies for this load balancer.
-
-
BackendIps
: One or more public IPs of backend VMs. -
BackendVmIds
: One or more IDs of backend VMs for the load balancer. -
DnsName
: The DNS name of the load balancer. -
HealthCheck
: Information about the health check configuration.-
CheckInterval
: The number of seconds between two requests (between5
and600
both included). -
HealthyThreshold
: The number of consecutive successful requests before considering the VM as healthy (between2
and10
both included). -
Path
: If you use the HTTP or HTTPS protocols, the request URL path. -
Port
: The port number (between1
and65535
, both included). -
Protocol
: The protocol for the URL of the VM (HTTP
|HTTPS
|TCP
|SSL
). -
Timeout
: The maximum waiting time for a response before considering the VM as unhealthy, in seconds (between2
and60
both included). -
UnhealthyThreshold
: The number of consecutive failed requests before considering the VM as unhealthy (between2
and10
both included).
-
-
Listeners
: The listeners for the load balancer.-
BackendPort
: The port on which the backend VM is listening (between1
and65535
, both included). -
BackendProtocol
: The protocol for routing traffic to backend VMs (HTTP
|HTTPS
|TCP
|SSL
). -
LoadBalancerPort
: The port on which the load balancer is listening (between1
and65535
, both included). -
LoadBalancerProtocol
: The routing protocol (HTTP
|HTTPS
|TCP
|SSL
). -
PolicyNames
: The names of the policies. If there are no policies enabled, the list is empty. -
ServerCertificateId
: The OUTSCALE Resource Name (ORN) of the server certificate. For more information, see Resource Identifiers > OUTSCALE Resource Names (ORNs).
-
-
LoadBalancerName
: The name of the load balancer. -
LoadBalancerStickyCookiePolicies
: The policies defined for the load balancer.-
CookieExpirationPeriod
: The time period, in seconds, after which the cookie should be considered stale.
If1
, the stickiness session lasts for the duration of the browser session. -
PolicyName
: The name of the stickiness policy.
-
-
LoadBalancerType
: The type of load balancer. Valid only for load balancers in a Net.
IfLoadBalancerType
isinternet-facing
, the load balancer has a public DNS name that resolves to a public IP.
IfLoadBalancerType
isinternal
, the load balancer has a public DNS name that resolves to a private IP. -
NetId
: The ID of the Net for the load balancer. -
PublicIp
: (internet-facing only) The public IP associated with the load balancer. -
SecuredCookies
: Whether secure cookies are enabled for the load balancer. -
SecurityGroups
: One or more IDs of security groups for the load balancers. Valid only for load balancers in a Net. -
SourceSecurityGroup
: Information about the source security group of the load balancer, which you can use as part of your inbound rules for your registered VMs.
To only allow traffic from load balancers, add a security group rule that specifies this source security group as the inbound source.-
SecurityGroupAccountId
: The account ID of the owner of the security group. -
SecurityGroupName
: The name of the security group.
-
-
Subnets
: The ID of the Subnet in which the load balancer was created. -
SubregionNames
: The ID of the Subregion in which the load balancer was created. -
Tags
: One or more tags associated with the load balancer.-
Key
: The key of the tag, with a minimum of 1 character. -
Value
: The value of the tag, between 0 and 255 characters.
-
-
-
ResponseContext
: Information about the context of the response.-
RequestId
: The ID of the request.
-
{
"ResponseContext": {
"RequestId": "0475ca1e-d0c5-441d-712a-da55a4175157"
},
"LoadBalancer": {
"Tags": [],
"SourceSecurityGroup": {
"SecurityGroupName": "security-group-example",
"SecurityGroupAccountId": "123456789012"
},
"SecuredCookies": false,
"PublicIp": "192.0.2.0",
"Subnets": [
"subnet-12345678"
],
"NetId": "vpc-12345678",
"BackendVmIds": [],
"ApplicationStickyCookiePolicies": [],
"SecurityGroups": [
"sg-12345678"
],
"LoadBalancerType": "internet-facing",
"AccessLog": {
"PublicationInterval": 60,
"IsEnabled": false
},
"DnsName": "private-lb-example.123456789.eu-west-2.lbu.outscale.com",
"HealthCheck": {
"UnhealthyThreshold": 5,
"Timeout": 5,
"CheckInterval": 30,
"Path": "/index.html",
"Protocol": "HTTPS",
"HealthyThreshold": 10,
"Port": 8080
},
"LoadBalancerStickyCookiePolicies": [],
"SubregionNames": [
"eu-west-2a"
],
"Listeners": [
{
"ServerCertificateId": "orn:ows:idauth::012345678910:server-certificate/Certificate",
"BackendPort": 80,
"BackendProtocol": "HTTP",
"LoadBalancerPort": 443,
"LoadBalancerProtocol": "HTTPS"
}
],
"LoadBalancerName": "private-lb-example"
}
}
Configuring Health Checks Using oapi-cli
The UpdateLoadBalancer command modifies the specified attribute of a load balancer. You can specify only one attribute at a time.
You can set a new SSL certificate to an SSL or HTTPS listener of a load balancer.
This certificate replaces any certificate used on the same load balancer and port.
You can also replace the currently enabled policy for the load balancer with another one.
If the PolicyNames
parameter is empty, the currently enabled policy is disabled.
$ oapi-cli --profile "default" UpdateLoadBalancer \
--LoadBalancerName "private-lb-example" \
--HealthCheck '{
"HealthyThreshold": 10,
"CheckInterval": 30,
"Path": "/index.html",
"Port": 8080,
"Protocol": "HTTPS",
"Timeout": 5,
"UnhealthyThreshold": 5
}'
This command contains the following attributes that you need to specify:
-
DryRun
: (optional) If true, checks whether you have the required permissions to perform the action. -
HealthCheck
: (optional) Information about the health check configuration.-
CheckInterval
: The number of seconds between two requests (between5
and600
both included). -
HealthyThreshold
: The number of consecutive successful requests before considering the VM as healthy (between2
and10
both included). -
Path
: (optional) If you use the HTTP or HTTPS protocols, the request URL path. -
Port
: The port number (between1
and65535
, both included). -
Protocol
: The protocol for the URL of the VM (HTTP
|HTTPS
|TCP
|SSL
). -
Timeout
: The maximum waiting time for a response before considering the VM as unhealthy, in seconds (between2
and60
both included). -
UnhealthyThreshold
: The number of consecutive failed requests before considering the VM as unhealthy (between2
and10
both included).
-
-
LoadBalancerName
: The name of the load balancer.
The UpdateLoadBalancer command returns the following elements:
-
LoadBalancer
: Information about the load balancer.-
AccessLog
: Information about access logs.-
IsEnabled
: If true, access logs are enabled for your load balancer. If false, they are not. If you set this to true in your request, theOsuBucketName
parameter is required. -
OsuBucketName
: The name of the OOS bucket for the access logs. -
OsuBucketPrefix
: The path to the folder of the access logs in your OOS bucket (by default, theroot
level of your bucket). -
PublicationInterval
: The time interval for the publication of access logs in the OOS bucket, in minutes. This value can be either5
or60
(by default,60
).
-
-
ApplicationStickyCookiePolicies
: The stickiness policies defined for the load balancer.-
CookieName
: The name of the application cookie used for stickiness. -
PolicyName
: The mnemonic name for the policy being created. The name must be unique within a set of policies for this load balancer.
-
-
BackendIps
: One or more public IPs of backend VMs. -
BackendVmIds
: One or more IDs of backend VMs for the load balancer. -
DnsName
: The DNS name of the load balancer. -
HealthCheck
: Information about the health check configuration.-
CheckInterval
: The number of seconds between two requests (between5
and600
both included). -
HealthyThreshold
: The number of consecutive successful requests before considering the VM as healthy (between2
and10
both included). -
Path
: If you use the HTTP or HTTPS protocols, the request URL path. -
Port
: The port number (between1
and65535
, both included). -
Protocol
: The protocol for the URL of the VM (HTTP
|HTTPS
|TCP
|SSL
). -
Timeout
: The maximum waiting time for a response before considering the VM as unhealthy, in seconds (between2
and60
both included). -
UnhealthyThreshold
: The number of consecutive failed requests before considering the VM as unhealthy (between2
and10
both included).
-
-
Listeners
: The listeners for the load balancer.-
BackendPort
: The port on which the backend VM is listening (between1
and65535
, both included). -
BackendProtocol
: The protocol for routing traffic to backend VMs (HTTP
|HTTPS
|TCP
|SSL
). -
LoadBalancerPort
: The port on which the load balancer is listening (between1
and65535
, both included). -
LoadBalancerProtocol
: The routing protocol (HTTP
|HTTPS
|TCP
|SSL
). -
PolicyNames
: The names of the policies. If there are no policies enabled, the list is empty. -
ServerCertificateId
: The OUTSCALE Resource Name (ORN) of the server certificate. For more information, see Resource Identifiers > OUTSCALE Resource Names (ORNs).
-
-
LoadBalancerName
: The name of the load balancer. -
LoadBalancerStickyCookiePolicies
: The policies defined for the load balancer.-
CookieExpirationPeriod
: The time period, in seconds, after which the cookie should be considered stale.
If1
, the stickiness session lasts for the duration of the browser session. -
PolicyName
: The name of the stickiness policy.
-
-
LoadBalancerType
: The type of load balancer. Valid only for load balancers in a Net.
IfLoadBalancerType
isinternet-facing
, the load balancer has a public DNS name that resolves to a public IP.
IfLoadBalancerType
isinternal
, the load balancer has a public DNS name that resolves to a private IP. -
NetId
: The ID of the Net for the load balancer. -
PublicIp
: (internet-facing only) The public IP associated with the load balancer. -
SecuredCookies
: Whether secure cookies are enabled for the load balancer. -
SecurityGroups
: One or more IDs of security groups for the load balancers. Valid only for load balancers in a Net. -
SourceSecurityGroup
: Information about the source security group of the load balancer, which you can use as part of your inbound rules for your registered VMs.
To only allow traffic from load balancers, add a security group rule that specifies this source security group as the inbound source.-
SecurityGroupAccountId
: The account ID of the owner of the security group. -
SecurityGroupName
: The name of the security group.
-
-
Subnets
: The ID of the Subnet in which the load balancer was created. -
SubregionNames
: The ID of the Subregion in which the load balancer was created. -
Tags
: One or more tags associated with the load balancer.-
Key
: The key of the tag, with a minimum of 1 character. -
Value
: The value of the tag, between 0 and 255 characters.
-
-
-
ResponseContext
: Information about the context of the response.-
RequestId
: The ID of the request.
-
{
"ResponseContext": {
"RequestId": "0475ca1e-d0c5-441d-712a-da55a4175157"
},
"LoadBalancer": {
"Tags": [],
"SourceSecurityGroup": {
"SecurityGroupName": "security-group-example",
"SecurityGroupAccountId": "123456789012"
},
"SecuredCookies": false,
"PublicIp": "192.0.2.0",
"Subnets": [
"subnet-12345678"
],
"NetId": "vpc-12345678",
"BackendVmIds": [],
"ApplicationStickyCookiePolicies": [],
"SecurityGroups": [
"sg-12345678"
],
"LoadBalancerType": "internet-facing",
"AccessLog": {
"PublicationInterval": 60,
"IsEnabled": false
},
"DnsName": "private-lb-example.123456789.eu-west-2.lbu.outscale.com",
"HealthCheck": {
"UnhealthyThreshold": 5,
"Timeout": 5,
"CheckInterval": 30,
"Path": "/index.html",
"Protocol": "HTTPS",
"HealthyThreshold": 10,
"Port": 8080
},
"LoadBalancerStickyCookiePolicies": [],
"SubregionNames": [
"eu-west-2a"
],
"Listeners": [
{
"ServerCertificateId": "orn:ows:idauth::012345678910:server-certificate/Certificate",
"BackendPort": 80,
"BackendProtocol": "HTTP",
"LoadBalancerPort": 443,
"LoadBalancerProtocol": "HTTPS"
}
],
"LoadBalancerName": "private-lb-example"
}
}
Configuring Health Checks Using AWS CLI
Before you begin: Install and configure AWS CLI. For more information, see Installing and Configuring AWS CLI. |
To configure health checks for a load balancer, use the configure-health-check command following this syntax:
$ aws elb configure-health-check \
--profile YOUR_PROFILE \
--load-balancer-name LB_NAME \
--health-check Target=HTTP:80/home/index.html,Interval=60,Timeout=5,UnhealthyThreshold=5,HealthyThreshold=2 \
--endpoint https://lbu.eu-west-2.outscale.com
This command contains the following attributes that you need to specify:
-
(optional)
profile
: The named profile you want to use, created when configuring AWS CLI. For more information, see Installing and Configuring AWS CLI. -
load-balancer-name
: The name of the load balancer. -
health-check
: The configuration for the health checks. This attribute requires the following elements:-
Target
: The backend instances protocol and port to check, in theprotocol:port/path
format.You can type the following values:
-
Protocol:
TCP
,SSL
,HTTP
, orHTTPS
-
Port: Between 1 and 65535 (both included)
-
Path: If you use the HTTP or HTTPS protocols, the request URL path (for example,
HTTP:80/index.html
)
-
-
Interval
: The number of seconds between two requests (between 5 and 600 both included, by default 30). -
Timeout
: The maximum waiting time for a response before considering the instance as unhealthy, in seconds (between 2 and 60 both included, by default 5). -
UnhealthyThreshold
: The number of consecutive failed requests to consider the instance as unhealthy (between 2 and 10 both included, by default 2). -
HealthyThreshold
: The number of consecutive successful requests to consider the instance as healthy (between 2 and 10 both included, by default 10).
-
-
endpoint
: The endpoint corresponding to the Region you want to send the request to. For more information, see Installing and Configuring AWS CLI.
The configure-health-check command returns the following elements:
-
HealthCheck
: Information about the updated health checks. This element contains the following information:-
HealthyThreshold
: The number of consecutive successful requests to consider the instance as healthy. -
Interval
: The number of seconds between two requests. -
Target
: The backend instances protocol and port to check, and the request URL path if you are using HTTP protocol. -
Timeout
: The maximum waiting time for a response before considering the instance as unhealthy, in seconds. -
UnhealthyThreshold
: The number of consecutive failed requests to consider the instance as unhealthy.
-
{
"HealthCheck": {
"HealthyThreshold": 2,
"Interval": 60,
"Target": "HTTP:80/home/index.html",
"Timeout": 5,
"UnhealthyThreshold": 5
}
}
The health checks are configured for the specified load balancer.
Related Pages
Corresponding API Methods
AWS™ and Amazon Web Services™ are trademarks of Amazon Technologies, Inc or its affiliates in the United States and/or other countries.