Configure NodeBalancers with the Linode API
Updated by Linode Written by Linode
NodeBalancers can be used to provide high availability load balancing for almost any type of website or service hosted on a Linode. This guide will demonstrate how to use the Linode API to create a NodeBalancer with two back end nodes.
You will need a Personal Access Token for the Linode API to complete the steps in this guide. The easiest way to get an access token is by visiting the beta Linode Manager; for more information, as well as a basic introduction to using the Linode API, see our guide on Getting Started with the Linode API.
Create a NodeBalancer
Store your Personal Access Token as a shell variable:
export TOKEN=<token-string>Using a text editor, create a file to store configuration options:
- nodebalancer.json
-
1 2 3 4 5{ "region": "us-central", "label": "nodebalancer-1", "client_conn_throttle": 10 }
Create a NodeBalancer by making a POST request to the
/nodebalancersendpoint:curl https://api.linode.com/v4/nodebalancers \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -X POST -d @nodebalancer.jsonIf the NodeBalancer is successfully created, the response will include its ID. Copy the ID to use in subsequent requests.
Add Configuration
NodeBalancers are created without any configuration profiles attached. Each profile configures a single port on the NodeBalancer. Once the port is configured, the NodeBalancer will begin listening for traffic on that port.
Create a new configuration file:
- nodebalancer-config.json
-
1 2 3 4 5{ "label": "nodebalancer-1", "port": 80, "check": "connection" }
Substitute the NodeBalancer’s ID into the URL below:
curl https://api.linode.com/v4/nodebalancers/$nodebalancer-id/configs \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -X POST -d @nodebalancer-config.json
NoteFor more information about configuration options, see our NodeBalancer Reference Guide.
Add Nodes
Even with a working configuration profile, the NodeBalancer isn’t doing anything yet, since it has no nodes connected to it. Repeat the steps in this section for each node you would like to add; usually you will want at least two nodes.
Create Linodes
Add the following options to a new config file. Adjust the type, image, and region to suit your needs; make sure the new Linode is in the same region as your NodeBalancer and choose a secure root password.
- create-linode.json
-
1 2 3 4 5 6 7{ "region": "us-central", "type": "g5-standard-2", "image": "linode/debian9", "root_pass": "password", "booted": false }
Use the API to create a Linode:
curl https://api.linode.com/v4/linode/instances/ \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -X POST -d @create-linode.jsonMake a note of the new Linode’s ID.
Add configuration options for adding a private IPv4 address:
- ip-address.json
-
1 2 3 4 5{ "type": "ipv4", "public": false, "linode_id": 7449584 }
Add a private IP address to the new Linode:
curl https://api.linode.com/v4/networking/ips \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -X POST -d @ip-address.jsonBoot the Linode:
curl -X POST https://api.linode.com/v4/linode/instances/$linode-id/boot \ -H "Authorization: Bearer $TOKEN"
Add Nodes to NodeBalancer
Add the new Linodes to the NodeBalancer’s nodes.
Add configuration options for adding nodes. Substitute the private IP address of the node into the
addressfield and give each node a unique label.- add-node.json
-
1 2 3 4{ "label": "node-1", "address": "$node-private-ip:80" }
Use the
/nodesendpoint to add a node:curl https://api.linode.com/v4/nodebalancers/$nodebalancer-id/configs/$config-id/nodes \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -X POST -d @add-node.jsonRepeat this process for each additional node.
Check Node Status
Check the status of the two nodes:
curl https://api.linode.com/v4/nodebalancers/$nodebalancer-id/configs/$config-id \
-H "Authorization: Bearer $TOKEN"
. . .
"nodes_status": {
"up": 0,
"down": 2
},
. . .
Both nodes are down because there is no process for the NodeBalancer to connect to on the designated port. As a demonstration, a basic install of NGINX will listen on port 80 automatically. SSH into each node and install NGINX:
apt update && apt upgrade && apt install nginx
If you check the NodeBalancer config again, it should report that both nodes are now up. You can also navigate to the NodeBalancer’s public IP address in a browser; the default NGINX landing page should be displayed.
Configure HTTPS
NodeBalancers can also be configured to use HTTPS. You will need to have a TLS certificate before enabling this option.
If you do not have an existing TLS certificate, generate a self-signed certificate using OpenSSL:
openssl req -new -newkey rsa:4096 -x509 -sha256 -days 365 -nodes -out MyCertificate.crt -keyout MyKey.keyNote
Provide values for country name, common name, etc. when prompted. The Linode API will reject the certificate if these are left blank.Edit your
nodebalancer-config.jsonconfiguration file:- nodebalancer-config.json
-
1 2 3 4 5 6{ "protocol":"https", "port": 443, "ssl_cert": <contents of MyCertificate.crt>, "ssl_key": <contents of MyKey.key> }
Use a PUT request to update your NodeBalancer’s configuration:
curl -X PUT https://api.linode.com/v4/nodebalancers/$nodebalancer-id/configs/$config-id \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -d @nodebalancer-config.json
More Information
You may wish to consult the following resources for additional information on this topic. While these are provided in the hope that they will be useful, please note that we cannot vouch for the accuracy or timeliness of externally hosted materials.
Join our Community
Find answers, ask questions, and help others.
This guide is published under a CC BY-ND 4.0 license.