Akamai OS War Stories - PowerPoint PPT Presentation

About This Presentation
Title:

Akamai OS War Stories

Description:

Title: An Analysis of the Performance Benefits of Multihoming Author: SCS Last modified by: bmm Created Date: 8/5/2003 9:18:22 PM Document presentation format – PowerPoint PPT presentation

Number of Views:86
Avg rating:3.0/5.0
Slides: 20
Provided by: SCS56
Category:
Tags: akamai | open | stories | war

less

Transcript and Presenter's Notes

Title: Akamai OS War Stories


1
Akamai OS War Stories
  • Bruce Maggs

2
15-410 Gratuitous Quote of the Day
Well youre not hardcore (No youre not
hardcore) Unless you live hardcore (Unless you
live hardcore) But the legend of the rent was way
hardcore - School of Rock
3
My role at Akamai
  • Joined the company before it was a company (still
    at MIT, Fall 1998)
  • First leader of engineering organization (VP,
    Research and Development)
  • Engineering grew from 10 to 140 employees in
    under a year
  • Now VP, Research
  • Data Driven Design of Distributed Systems

4
Major Akamai Customers
  • Microsoft (Windows Update)
  • Apple (iTunes)
  • Anti-worm/virus software vendors
  • Images for Yahoo!, MSNBC, Amazon
  • FBI

5
Network Deployment
6
Akamai Operating Systems
  • Started with Red Hat Linux, 2.0.34 kernel
    (October 1998)
  • Deployed Windows 2000 Server, early 2000
  • Linux performance optimizations
  • SecureOS derived from Linux (2003)
  • Battle hardened

7
Why more than one OS?
  • Original plan half Linux, half FreeBSD
  • Skunkworks port to Solaris
  • For Purify debugging tool
  • Windows later added
  • Windows Media Server runs on no other platform
  • Use of socket-based interactions

8
Optimizations and Security
  • Manage disk and disk cache directly
  • (Optimize dedicated server for its application)
  • Optimize network kernel for short transactions
  • Run services in user mode!
  • Only one access method ssh

9
Reliance on GNU software
  • GNU GPL (GNU Public License) excerpts
  • Activities other than copying, distribution and
    modification are not covered by this License
    they are outside its scope. The act of running
    the Program is not restricted, and the output
    from the Program is covered only if its contents
    constitute a work based on the Program
    (independent of having been made by running the
    Program). Whether that is true depends on what
    the Program does.
  • 3. You may copy and distribute the Program (or a
    work based on it, under Section 2) in object code
    or executable form under the terms of Sections 1
    and 2 above provided that you also do one of the
    following
  • a) Accompany it with the complete corresponding
    machine-readable source code, which must be
    distributed under the terms of Sections 1 and 2
    above on a medium customarily used for software
    interchange or,

10
Themes
  • Its our fault if the clients machine doesnt
    work!
  • Its not easy to convince a vendor that their OS
    is broken.
  • Be prepared to fix it yourself.

11
Steve cant see the new Powerbook
  • Steves assistant Eddie explains the problem
  • I spend all night poring through the logs
  • Eddie sneaks into Steves office
  • Mystery solved

12
David is a Night Owl
  • Your servers arent responding!
  • Why dont you support half-closed connections?
  • Why dont you support transactional TCP?
  • (Why would transactional TCP be bad for us?)

13
The Dreaded Double Header
  • http//images.xyz.com/logo.gif
  • - customer has delegated images.xyz.com to
    Akamai, registered image server
  • http//images.xyz.com/images.xyz.com/logo.gif
  • - didnt work for Dave, but worked for me!
  • Akamai server strips off first header, sends GET
    /images.xyz.com/logo.gif to customer image server
  • 5 of 8 customer image servers had been patched to
    ignore /images.xyz.com

14
The Magg Syndrome
  • We hijack a customers site?
  • I become the most hated person on the Internet
  • We isolate the problem (nine months of work)
  • Nobody cares?

15
Dont do this at home
  • Irate end user threatens to go to police
  • Akamai is attacking my home system!
  • Its in the logs.
  • It all began in a Yahoo! chat room
  • Have your lawyers call our lawyers

16
Packet of Death
  • Akamai servers take care of each other
  • A router in Malaysia is taking down our whole
    system!
  • The mysterious MTU
  • The final Linux kernel isnt so final
  • 2.0.36 (Nov. 1998) ? 2.0.37 (June 1999)

17
BIND Miseries
  • Open-source DNS server code
  • Messy, buggy implementations
  • Our customers still run old versions!
  • BIND 4.8 TTL issue
  • Refresh attempt when 15 minutes left
  • Success if new list of IPs overlaps with old
    list of IPs
  • Otherwise, refuse to resolve for next 15 minutes!

18
Were under attack!
  • Someone has cracked our authentication scheme!
  • But they havent got the format of control
    messages quite right.
  • Wait a minute. Thats one of ours!
  • Where DO these servers disappear to?

19
Whats coming?
  • Customers are running IBM Websphere applications
    on our servers!
  • Physical security is now more of an issue.
  • Isolation between customer applications?
  • Database caching?
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Akamai OS War Stories" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!