Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Can't connect to ElastiCache redis cluster via NAT instance #693

Closed
jeremytm opened this issue Sep 10, 2018 · 10 comments
Closed

Can't connect to ElastiCache redis cluster via NAT instance #693

jeremytm opened this issue Sep 10, 2018 · 10 comments
Labels
pinned released

Comments

@jeremytm
Copy link

We're using a single node cluster to test our workflow, and cannot connect via a NAT instance.

Having done some debugging, we get an error immediately after the node is connected:

Disconnect ec2-XX-X-XX-XX.compute-1.amazonaws.com:6379 because the node does not hold any slot

Looking at the code this happens because the actual cluster node has an IP address from inside our VPC, while the NAT instance which we use to establish connectivity has a different public hostname. Because ioredis relies on the ip address of each node to create keys (or slots in the context of this error message), it thinks the node is missing and immediately disconnects it.

Is this something you guys would ever fix? I'm thinking some sort of map specified in connection options which maps the NAT hostname and port to the real VPC IP and ports could be a solution?

For anyone asking why we want to run local code with a remote redis implementation:

Usually our code runs remotely in AWS lambda. However our fastest dev workflow is where we test locally for convenience. Usually a local redis server is enough, but we regularly need to connect to a remote redis instance to debug with live data – and uploading our full repo to lambda on every iteration is way too slow.

Up until now we've used public redis instances in redislabs. However, we're moving to a more scalable solution in ElastiCache with redis cluster (which means running inside a VPC) and would like to be able to achieve the same fast workflow.
@luin
Copy link
Collaborator

luin commented Sep 12, 2018

Hi, haven't dug into this issue, but I remember there's an issue on the Redis repo about this issue: redis/redis#2527. The option announce-ip seems to have been added since Redis 4.x.

@jeremytm
Copy link
Author

Interesting, however there are a couple of problems:

  1. The cluster-announce-ip and cluster-announce-port options need to be specified in redis.conf, which we don't have access to per-node with elasticache.
  2. We only need to remap the announced ip and port when connecting remotely via NAT. General connectivity within VPC should run as normal, so it makes more sense for implementation to be contextual, in the client.

@stale
Copy link

stale bot commented Oct 12, 2018

This issue has been automatically marked as stale because it has not had recent activity. It will be closed after 7 days if no further activity occurs, but feel free to re-open a closed issue if needed.

@stale stale bot added the wontfix label Oct 12, 2018
@jeremytm
Copy link
Author

For now we've made a fork of ioredis in our private npm, and have modified code to support what we need.

@stale stale bot removed the wontfix label Oct 12, 2018
@luin
Copy link
Collaborator

luin commented Oct 13, 2018

@jeremytm Sorry for the late response. I've already migrated the code to TypeScript and will submit a pull request for the NAT support (by adding a nat map option) in the next week. I'll let you know then.

@luin luin added the pinned label Oct 13, 2018
@luin
Copy link
Collaborator

luin commented Oct 18, 2018

@jeremytm Would you like to share the modification of the code that works for your case or just make a pull request?

@jeremytm
Copy link
Author

jeremytm commented Oct 23, 2018
edited

It's pretty simple, and potentially not the safest option, but it works for us. It just passes the nodes in a callback provided via connection options. This callback is free to modify the nodes used by ioredis however it pleases.

#738

The callback we use is provided here:

(nodes)=>{
  
  for( let node of nodes ){
    let mapInfo = natMappings[node.host];
    if(mapInfo){
      
      let toInfo = mapInfo[node.port.toString()];
      if(toInfo){
        
        let [toHost,toPort] = toInfo.split(':');
        node.host = toHost;
        node.port = toPort;
        
      } else {
        throw new Error(`Port ${node.port} not found in map for ${node.host}`);
      }
      
    } else {
      throw new Error(`Host ${node.host} not found in map`);
    }
  }
};

Nat mappings would be something like:

{
  'rugby-cache-0001-001.xxxxxx.0001.use1.cache.amazonaws.com': {
    '6379': 'ec2-xx-x-xx-xx.compute-1.amazonaws.com:6379'
  },
  'rugby-cache-0001-002.xxxxxx.0001.use1.cache.amazonaws.com': {
    '6380': 'ec2-xx-x-xx-xx.compute-1.amazonaws.com:6380'
  }
}

@luin
Copy link
Collaborator

luin commented Oct 24, 2018

@jeremytm Neat solution! A question for it though that since Redis Cluster returns IPs instead of hostnames, do you have to specify both IPs & hostnames? E.g. let's say rugby-cache-0001-001.xxxxxx.0001.use1.cache.amazonaws.com points to 172.189.1.2, the nat mappings should be:

{
  'rugby-cache-0001-001.xxxxxx.0001.use1.cache.amazonaws.com': {
    '6379': 'ec2-xx-x-xx-xx.compute-1.amazonaws.com:6379'
  },
  '172.189.1.2': {
    '6379': 'ec2-xx-x-xx-xx.compute-1.amazonaws.com:6379' // same as the above
  },
}

@jeremytm
Copy link
Author

Yeah, my bad, That's actually how ours looks. I just messed something up during copying and pasting while obfuscating the addresses.

luin added a commit that referenced this issue Dec 8, 2018
@luin
feat(cluster): add NAT support
69608f6 
Closes #693
luin added a commit that referenced this issue Dec 8, 2018
@luin
feat(cluster): add NAT support
49149d0 
Closes #693
@luin luin mentioned this issue Dec 8, 2018
Merged
@luin luin closed this as completed in #758 Dec 9, 2018
luin added a commit that referenced this issue Dec 9, 2018
@luin
feat(cluster): add NAT support (#758)
3702d67 
Closes #693, #365
ioredis-robot pushed a commit that referenced this issue Dec 9, 2018
@semantic-release-bot
chore(release): 4.3.0 [skip ci]
77231b5 
# [4.3.0](v4.2.3...v4.3.0) (2018-12-09)

### Features

* **cluster:** add NAT support ([#758](#758)) ([3702d67](3702d67)), closes [#693](#693) [#365](#365)
@ioredis-robot
Copy link
Collaborator

🎉 This issue has been resolved in version 4.3.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

janus-dev87 added a commit to janus-dev87/ioredis-work that referenced this issue Mar 1, 2024
@janus-dev87
chore(release): 4.3.0 [skip ci]
45c5f32 
# [4.3.0](redis/ioredis@v4.2.3...v4.3.0) (2018-12-09)

### Features

* **cluster:** add NAT support ([#758](redis/ioredis#758)) ([3702d67](redis/ioredis@3702d67)), closes [#693](redis/ioredis#693) [#365](redis/ioredis#365)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
pinned released
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@luin @jeremytm @ioredis-robot