BestHub
Sign in
Backend Development 31 min read

High Availability Traffic Governance: Circuit Breakers, Isolation, Retries, Timeouts, and Rate Limiting

This article explains how to achieve high‑availability in microservice systems through traffic governance techniques such as circuit breakers, various isolation strategies, retry mechanisms, timeout controls, and rate‑limiting, illustrating each concept with examples, formulas, and pseudo‑code.

Top Architect
Top Architect
Top Architect
High Availability Traffic Governance: Circuit Breakers, Isolation, Retries, Timeouts, and Rate Limiting

Overview The article discusses the importance of the “three‑high” (high performance, high availability, easy scalability) for system health and introduces traffic governance as a key practice to maintain these goals.

Availability Metrics Defines MTBF and MTTR and provides the formula Availability = MTBF / (MTBF + MTTR) × 100%.

Traffic Governance Objectives Lists purposes such as network performance optimization, service quality assurance, fault tolerance, security, and cost efficiency.

Circuit Breaker Describes traditional circuit breaker states (Closed, Open, Half‑Open) and the Google SRE adaptive throttling algorithm, including the probability p calculation.

Isolation Strategies Covers dynamic/static isolation, read/write isolation (CQRS), core isolation, hotspot isolation, user isolation, and process/thread/cluster/machine‑room isolation.

Retry Mechanisms Explains synchronous and asynchronous retries, maximum attempts, back‑off strategies (linear, jitter, exponential, exponential‑jitter) and the risk of retry storms, with mitigation techniques such as retry windows and chain‑level limits.

Timeout Management Discusses fixed vs EMA dynamic timeout, timeout propagation across services, and implementation using context.

Rate Limiting Summarizes client‑side and server‑side limiting, common algorithms (sliding window, token bucket, leaky bucket) and overload detection criteria.

Conclusion Emphasizes that traffic governance is one of many strategies (e.g., redundancy, caching, load balancing) needed for long‑term high‑availability systems.

/* pseudo code */
ConnectWithBackoff()
  current_backoff = INITIAL_BACKOFF
  current_deadline = now() + INITIAL_BACKOFF
  while (TryConnect(Max(current_deadline, now() + MIN_CONNECT_TIMEOUT)) != SUCCESS)
    SleepUntil(current_deadline)
    current_backoff = Min(current_backoff * MULTIPLIER, MAX_BACKOFF)
    current_deadline = now() + current_backoff + UniformRandom(-JITTER * current_backoff, JITTER * current_backoff)
Original Source

Signed-in readers can open the original source through BestHub's protected redirect.

Sign in to view source
Republication Notice

This article has been distilled and summarized from source material, then republished for learning and reference. If you believe it infringes your rights, please contactadmin@besthub.devand we will review it promptly.

high availabilityRetryrate limitingTimeoutcircuit breakertraffic governance
Top Architect
Written by

Top Architect

Top Architect focuses on sharing practical architecture knowledge, covering enterprise, system, website, large‑scale distributed, and high‑availability architectures, plus architecture adjustments using internet technologies. We welcome idea‑driven, sharing‑oriented architects to exchange and learn together.

0 followers
Reader feedback

How this landed with the community

Sign in to like

Rate this article

Was this worth your time?

Sign in to rate
Discussion

0 Comments

Thoughtful readers leave field notes, pushback, and hard-won operational detail here.

Sign in to comment