/WebSocket Connection Balancer
WebSocket Connection Balancer
2
v1.0.58
Traefik WebSocket Connection Balancer
A high-performance WebSocket connection balancer middleware for Traefik that distributes WebSocket connections across multiple backend pods based on their active connection count. This plugin is designed to ensure optimal load distribution for WebSocket-heavy applications.
Features
-
Intelligent Load Balancing
- Distributes connections based on real-time connection counts
- Automatic selection of least-loaded backend
- Connection count caching with configurable TTL
- Graceful failover on backend failures
-
WebSocket Support
- Full WebSocket protocol support (RFC 6455)
- Bidirectional message relay
- Transparent protocol upgrade handling
- Support for WebSocket extensions and subprotocols
-
Advanced Configuration
- Configurable metrics endpoint for both backend services and the balancer
- Adjustable timeouts (dial, read, write)
- TLS/SSL verification options
- Custom header forwarding
-
Pod-Level Monitoring
- Detailed metrics for individual pods
- Visualization of connection distribution across pods
- Enhanced debugging capabilities with pod identification
-
Monitoring & Debugging
- Detailed logging of connection events
- Connection metrics exposure through dedicated endpoint
- Error tracking and reporting
- Debug-friendly log messages
Quick Start
Prerequisites
- Go 1.22 or higher
- gorilla/websocket v1.5.3 or higher
Installation
- Clone the repository:
git clone https://github.com/yourusername/traefikwsbalancer.gitcd traefikwsbalancer
- Install dependencies:
go mod tidy
- Build the project:
go build ./...
Basic Usage
- Start the test server (provides backend WebSocket endpoints):
go run cmd/test-server/main.go
- In a separate terminal, run the test client:
go run cmd/test-client/main.go
Configuration
Core Components
The balancer consists of three main components:
- WebSocket Balancer (main middleware)
- Connection Fetcher (metrics collector)
- WebSocket Relay (message forwarder)
Configuration Options
type Config struct {MetricPath string // Path to fetch connection metrics from backendsBalancerMetricPath string // Path to expose balancer's metricsServices []string // List of backend pod URLsTLSVerify bool // Enable/disable TLS verificationCacheTTL int // Metrics cache duration in seconds}
Default Values
- MetricPath: "/metric"
- BalancerMetricPath: "/balancer-metrics"
- TLSVerify: true
- CacheTTL: 30 seconds
- DialTimeout: 10 seconds (internal)
- WriteTimeout: 10 seconds (internal)
- ReadTimeout: 30 seconds (internal)
Backend Implementation
Implementing the Metrics Endpoint
Each backend service must implement a /metric endpoint (or custom path configured in metricPath) that returns connection information. For pod-level metrics, the endpoint should include pod identification details.
Example in Node.js/Express:
app.get("/metric", (req, res) => {res.json({agentsConnections: activeConnections.size, // Number of active connectionspodName: process.env.POD_NAME, // Pod name from KubernetespodIP: process.env.POD_IP, // Pod IP from KubernetesnodeName: process.env.NODE_NAME // Node name from Kubernetes});});
Example in TypeScript/Express:
app.get("/metric", (_req: Request, res: Response) => {res.json({agentsConnections: agentsConnections.size, // Number of active connectionspodName: process.env.POD_NAME, // Pod name from KubernetespodIP: process.env.POD_IP, // Pod IP from KubernetesnodeName: process.env.NODE_NAME // Node name from Kubernetes});});
Example in Go:
http.HandleFunc("/metric", func(w http.ResponseWriter, r *http.Request) {metrics := struct {AgentsConnections int `json:"agentsConnections"`PodName string `json:"podName,omitempty"`PodIP string `json:"podIP,omitempty"`NodeName string `json:"nodeName,omitempty"`}{AgentsConnections: activeConnections.Count(),PodName: os.Getenv("POD_NAME"),PodIP: os.Getenv("POD_IP"),NodeName: os.Getenv("NODE_NAME"),}w.Header().Set("Content-Type", "application/json")json.NewEncoder(w).Encode(metrics)})
Connection Tracking
Your backend service should track active WebSocket connections. Here's a simple implementation in Node.js:
// Track active connectionsconst activeConnections = new Set();// WebSocket server setupconst wss = new WebSocketServer({ server });wss.on('connection', (ws) => {// Add connection to trackingactiveConnections.add(ws);ws.on('close', () => {// Remove connection from trackingactiveConnections.delete(ws);});});
Metrics Endpoint
The plugin provides a dedicated metrics endpoint that displays:
- Current timestamp
- List of services with their connection counts
- Pod-level metrics showing connection counts per pod
- Total connection count across all services
Example Metrics Response
{"timestamp": "2025-04-06T20:02:59Z","services": [{"url": "http://service-1.namespace.svc.cluster.local:80","connections": 42}],"podMetrics": {"http://service-1.namespace.svc.cluster.local:80": [{"agentsConnections": 42,"podName": "service-1-pod-abc123","podIP": "10.0.0.1","nodeName": "node-1"}]},"totalConnections": 42,"agentsConnections": 42}
Architecture
Connection Flow
- Client initiates WebSocket connection
- Balancer checks connection counts from all backends
- Selects backend with lowest connection count
- Establishes connection to chosen backend
- Sets up bidirectional relay
- Monitors connection health
Load Balancing Algorithm
- Maintains cache of connection counts
- Updates counts based on CacheTTL
- Uses atomic operations for thread safety
- Handles backend failures gracefully
Production Deployment
Best Practices
-
Security
- Enable TLS verification in production
- Implement proper origin checking
- Set appropriate timeouts
-
Performance
- Adjust CacheTTL based on load
- Monitor connection counts
- Set appropriate buffer sizes
-
Monitoring
- Use the dedicated metrics endpoint to monitor traffic distribution
- Track pod-level metrics to identify potential hotspots
- Monitor backend health
Example Configuration with Traefik
# Static configuration in the Traefik config fileexperimental:plugins:traefikwsbalancer:moduleName: "github.com/K8Trust/traefikwsbalancer"version: "v1.0.26"# Dynamic configuration (Kubernetes CRD)apiVersion: traefik.io/v1alpha1kind: Middlewaremetadata:name: socket-balancernamespace: defaultspec:plugin:traefikwsbalancer:metricPath: "/metric"balancerMetricPath: "/balancer-metrics"services:- "http://service-1.namespace.svc.cluster.local:80"cacheTTL: 30
Kubernetes Configuration
For pod-level metrics to work, ensure your pods expose their identities via environment variables in your deployment:
apiVersion: apps/v1kind: Deploymentmetadata:name: websocket-servicespec:template:spec:containers:- name: websocket-serviceenv:- name: POD_NAMEvalueFrom:fieldRef:fieldPath: metadata.name- name: POD_IPvalueFrom:fieldRef:fieldPath: status.podIP- name: NODE_NAMEvalueFrom:fieldRef:fieldPath: spec.nodeName
Troubleshooting
Common Issues
-
Connection Failures
- Check backend availability
- Verify network connectivity
- Check TLS configuration
-
Performance Issues
- Monitor connection counts via the metrics endpoint
- Adjust cache TTL
- Check backend resources
-
Protocol Errors
- Verify WebSocket upgrade headers
- Check protocol compatibility
- Monitor message sizes
-
Missing Pod Metrics
- Ensure pod environment variables are correctly set
- Verify backend metric endpoint returns pod information
- Check plugin logs for decoding errors
-
Endpoint Implementation Issues
- Verify your backend's
/metricendpoint returns valid JSON - Check for proper formatting of the
agentsConnectionsfield - Ensure connection tracking is accurately maintained
- Verify your backend's
Debugging
Enable detailed logging:
log.SetFlags(log.Lshortfile | log.Ltime | log.Lmicroseconds)
Contributing
- Fork the repository
- Create your feature branch
- Commit your changes
- Push to the branch
- Create a Pull Request
License
MIT License
Support
For issues and feature requests, please create an issue in the GitHub repository.
Acknowledgments
- gorilla/websocket team for the excellent WebSocket implementation
- Traefik team for the plugin system
- Contributors who have helped improve this project