Skip to main content
HashnodeEnd to End DevEnd to End Dev

Command Palette

Search for a command to run...

SCALING & AUTO SCALING

Complete Guide with Real-World Examples

Updated
22 min read
SCALING & AUTO SCALING
K
Karvendhan Nagaraj
Software Development Lead with 7+ years of experience designing, developing, and scaling enterprise web applications, backend systems, and platform infrastructure. I specialize in PHP (Laravel, CodeIgniter), Node.js, MySQL/MariaDB, system architecture, performance optimization, and technical leadership. Currently leading Agile development teams while driving modernization initiatives, establishing engineering standards, and delivering scalable, high-performance solutions. My responsibilities span application development, infrastructure management, DevOps practices, security hardening, and performance engineering. Key Achievements: ✔ Led modernization of legacy applications, improving maintainability and development efficiency. ✔ Built and managed production-grade VPS infrastructure supporting business-critical applications. ✔ Implemented self-hosted Grafana and SonarQube Community Edition, reducing licensing costs while improving monitoring and code quality governance. ✔ Established CI/CD deployment pipelines, improving release consistency and reducing deployment effort. ✔ Optimized MySQL/MariaDB databases through indexing strategies, query tuning, and performance analysis. ✔ Tuned Nginx, Apache, application servers, and databases to support growing workloads and improve system stability. ✔ Identified and remediated security vulnerabilities through vulnerability assessments, configuration hardening, and best-practice implementation. ✔ Standardized Git workflows, release processes, and development practices across teams. Core Expertise • Backend Architecture & System Design • PHP (Laravel, CodeIgniter) & Node.js • REST APIs & Secure Integrations • MySQL/MariaDB Performance Optimization • Linux & Windows Server Administration • CI/CD & Release Automation • Grafana, Prometheus & Observability • SonarQube & Code Quality Governance • Nginx & Apache Performance Tuning • Security Hardening & Vulnerability Remediation • Technical Leadership & Team Mentoring Throughout my career, I have contributed to e-commerce platforms, enterprise applications, and high-volume backend systems with a strong focus on scalability, reliability, security, and operational excellence. Currently expanding my expertise in AI-powered application integration, intelligent automation, and modern software architecture. Let's connect and discuss Backend Engineering, Platform Engineering, DevOps, System Architecture, and AI Integration.

1. What is Scaling?

Scaling is the process of adjusting computing resources - such as servers, CPU power, memory, or network bandwidth - to handle changes in application load. The goal is to ensure your application remains fast, reliable, and cost-efficient as demand grows or shrinks.

Why Scaling Matters

  • Performance: Users get fast response times regardless of traffic load

  • Cost Efficiency: Resources are added only when needed and removed when idle

2. Types of Scaling

2.1 Vertical Scaling (Scale Up)

Vertical scaling means upgrading the capacity of a single existing server - adding more CPU cores, RAM, or faster storage. It is the simplest approach since no code changes are required.

Advantages Disadvantages
Simple - no application changes needed Hardware has a physical upper limit
No need to manage distributed systems Single point of failure remains
Works well for databases with tight consistency Downtime required during upgrade
Easier to implement quickly Expensive at high tiers

2.2 Horizontal Scaling (Scale Out)

Horizontal scaling adds more server instances to distribute the load. Traffic is spread across multiple machines using a load balancer. This is the preferred approach for modern, cloud-native applications.

Advantages Disadvantages
No theoretical upper limit - keep adding servers Requires stateless application design
No single point of failure More complex infrastructure management
Cost-effective with cloud auto scaling Network latency between instances
Zero downtime scaling Shared state (e.g. sessions) must be externalized

2.3 Vertical vs. Horizontal - When to Use Which

Criteria Vertical Scaling Horizontal Scaling
Traffic Volume Low to Medium Medium to Very High
Application Type Monolithic apps, legacy systems Microservices, stateless APIs
Budget Initial lower cost Cost-efficient at scale
Failure Tolerance Single point of failure Highly fault tolerant
Database Good fit for relational DBs Needs read replicas or sharding
Setup Complexity Low High

3. Stateful vs. Stateless Architecture

3.1 Stateful Architecture

In a stateful architecture, session data and user context are stored directly on the server that handled the request. If the next request goes to a different server, the user's state is lost.

Problem Scenario

User logs into Server A, which stores their session in memory. Load balancer routes the next request to Server B - Server B has no knowledge of the session, so the user is logged out. This breaks the user experience and makes horizontal scaling extremely difficult.

3.2 Stateless Architecture

In a stateless architecture, the server does not retain any user-specific data between requests. All state is stored in a shared external system (e.g. Redis, a database). Any server can handle any request.

Real-World Example

A user logs in to a food delivery app. Their session token is stored in Redis (shared across all servers). Whether their next request hits Server 1, 2, or 10 - the session is always found in Redis. The server just reads it, processes the request, and returns a response.

3.3 Stateless Application Checklist

  • Sessions stored in Redis or a shared database - NOT in server memory

  • Uploaded files stored in cloud object storage (e.g. AWS S3, Azure Blob)

  • Cache stored in shared Redis cluster - not local in-memory cache

  • Configuration loaded from environment variables or a config service

  • No local file system writes for persistent data

  • API tokens / JWTs used for authentication instead of server-side sessions

4. Load Balancing

A load balancer is a component that distributes incoming network traffic across multiple servers. It ensures no single server becomes overwhelmed, improves fault tolerance, and enables horizontal scaling.

Real-World Analogy

Think of a bank with 5 tellers. A greeter at the entrance directs each customer to the least-busy teller. No single teller is overloaded. If one teller takes a break (server goes down), the greeter simply stops sending customers to that window. This is exactly what a load balancer does.

4.1 Load Balancing Algorithms

Algorithm How It Works Best Used When
Round Robin Requests distributed equally in rotation to each server All servers have similar capacity
Least Connections Sends request to server with fewest active connections Requests have varying processing time
Weighted Round Robin Servers get requests proportional to assigned weight Servers have different hardware specs
Least Response Time Routes to server with lowest response time Latency-sensitive applications
IP Hash Routes based on client's IP address consistently Sticky sessions needed (use sparingly)

4.2 Real-World Load Balancer Example

A ride-sharing app processes 50,000 trip requests per minute during evening rush hour. A Layer 7 (application) load balancer routes booking requests to the Booking Service cluster, map queries to the Maps Service cluster, and payment requests to the Payments cluster - each scaled independently based on its own load.

5. Auto Scaling

Auto scaling automatically adds (scale out) or removes (scale in) server instances based on real-time metrics like CPU utilization, memory usage, or request queue length. It eliminates the need for manual intervention during traffic spikes.

5.1 How Auto Scaling Works

  • You define scaling policies - e.g. 'Add 2 servers when CPU > 70% for 5 minutes'

  • A monitoring system (e.g. AWS CloudWatch) continuously tracks metrics

  • When a threshold is breached, the auto scaler launches new instances

  • New instances register with the load balancer and start receiving traffic

  • When load drops, the auto scaler terminates excess instances

5.2 Auto Scaling Policies

Policy Type Description & Example
Target Tracking Maintains a target metric. E.g. keep average CPU at 60%. AWS adds/removes instances automatically to stay near 60%.
Step Scaling Adds a variable number of instances based on how far the metric exceeds the threshold. CPU 70-80% → add 2; CPU 80-90% → add 4.
Scheduled Scaling Scales at predefined times. E.g. a news site scales up at 8am when readers check morning headlines and scales down at midnight.
Predictive Scaling Uses ML to analyze historical traffic patterns and pre-emptively scales before expected spikes (e.g. Friday evenings for streaming services).

Metric-Based Autoscaling

What metric-based autoscaling does — when traffic changes, your system watches key metrics and decides whether to scale out (add servers) or scale in (remove servers).

CPU Utilization — If CPU stays above a threshold (e.g., 70%), add servers; if below (e.g., 30%), remove servers.

Memory Usage — High memory triggers scale-out; consistently low memory triggers scale-in.

Request Count — More incoming requests per instance → add servers.

Network Throughput — High inbound/outbound traffic → scale-out.

Queue Length — Long message queue (SQS, RabbitMQ, etc.) → add workers.

Custom Metrics — Scale on app-specific metrics like active sessions, DB load, or latency.

Summary Table:

Metric Scale‑Out (Add) Scale‑In (Remove)
CPU >70% for 5 min <30% for 10 min
Memory >80% for 5 min <40% for 15 min
Requests >1000 req/min/instance <300 req/min/instance
Queue Length >500 messages <100 messages

6. Auto Scaling Challenges & Solutions

Challenge Solution & Real-World Context
Cold Start Delay New instances take 1-3 minutes to boot. Solution: Keep a minimum of 2-3 warm instances always running. Use container snapshots to reduce startup time. Pre-warm before known traffic spikes.
Database Bottleneck More app servers increase DB connection load. Solution: Use connection pooling (PgBouncer for PostgreSQL). Add read replicas for SELECT-heavy queries. Consider caching frequently accessed data in Redis.
Cache Warmup New instances start with empty cache - causing a 'thundering herd' to hit the database. Solution: Pre-populate cache on startup. Use lazy loading with a circuit breaker. Share cache via Redis cluster.
Cost Control Aggressive scaling can inflate cloud bills. Solution: Set scale-in cooldown periods. Use Spot/Preemptible instances for non-critical workloads. Set maximum instance limits and budget alerts.
Monitoring & Visibility Hard to debug issues across hundreds of ephemeral instances. Solution: Centralized logging (e.g. ELK Stack / Datadog). Distributed tracing (e.g. Jaeger, AWS X-Ray). Alert on error rate, not just CPU.

7. Real-Time Scenarios & Solutions

Scenario 1: Session Loss After Scaling

Problem Solution
Users get logged out randomly as load increases. New servers don't have the session data stored on old servers. Move sessions from server memory to Redis. All servers share the same Redis cluster. Session persists regardless of which server handles the request. Implement session TTL for security.

Scenario 2: Database Overload Under Scale

Problem Solution
As application servers scale out, the database is overwhelmed with connection requests. Query times increase from 10ms to 5 seconds. Add read replicas for read-heavy queries (reports, search). Use connection pooling (PgBouncer). Cache frequent queries in Redis (TTL = 60s). Introduce CQRS pattern - separate read and write paths.

Scenario 3: Uneven Load Distribution

Problem Solution
One server consistently handles 80% of traffic while others are idle. Users connecting to the overloaded server experience timeouts. Investigate the load balancing algorithm - switch from Round Robin to Least Connections. Check for sticky sessions and remove them. Ensure health checks are properly configured so dead servers are removed from rotation.

Scenario 4: Cost Spike During Auto Scaling

Problem Solution
Monthly cloud bill increased 400% due to over-aggressive auto scaling. Instances scale up for minor traffic blips and don't scale back down quickly enough. Add cooldown periods between scaling actions (e.g. 5-minute scale-up cooldown). Use step scaling with higher thresholds. Set maximum instance limits per service. Use Spot instances for non-critical stateless workers. Enable cost alerts and budget caps.

8. Cooling Time (Cooldown Period)

Cooldown period is the time gap enforced between two consecutive auto scaling actions. It prevents the system from making rapid, back-to-back scaling decisions based on short-lived metric spikes - protecting stability and controlling cost.

8.1 Why Cooldown Exists

When a new instance is added, it takes time to boot, register with the load balancer, warm up caches, and start handling traffic. If the auto scaler checked metrics every 30 seconds and kept seeing high CPU (because the new server hasn't fully contributed yet), it would keep launching more instances unnecessarily. The cooldown period says: 'Wait X minutes before evaluating the next scale action.'

Real-World Analogy

Imagine you are waiting for a kettle to boil. You turn up the heat. If you keep impatiently adjusting the knob every 10 seconds before the water heats up, you waste energy and may overshoot. The cooldown period is the 'wait and let the change take effect' pause before acting again.

8.2 Types of Cooldown

Cooldown Type What It Controls Typical Value
Default Cooldown Global cooldown applied after ANY scaling activity (scale-out or scale-in) 300 seconds (5 min)
Scale-Out Cooldown Time to wait after adding instances before considering adding more 180-300 seconds
Scale-In Cooldown Time to wait after removing instances before considering removing more 300-600 seconds
Instance Warmup Period Time given for a new instance to initialize before its metrics count toward scaling decisions 120-300 seconds

8.3 How Cooldown Works - Step by Step

  • 10:00:00 AM - CPU spikes to 85%. Auto scaler triggers: adds 2 new instances.

  • 10:00:00 AM - Cooldown timer starts (e.g. 5 minutes).

  • 10:02:00 AM - CPU is still at 78% (new instances still warming up). Auto scaler IGNORES this - cooldown active.

  • 10:05:00 AM - Cooldown expires. Auto scaler re-evaluates metrics.

  • 10:05:00 AM - CPU now 55% (new instances fully contributing). No further scaling needed.

Without Cooldown - The Problem

Without cooldown: 10:00 AM - add 2 servers. 10:01 AM - CPU still high (servers not ready) - add 2 more. 10:02 AM - add 2 more. Result: 8 unnecessary servers launched in 3 minutes. Cloud bill spikes. Once all servers come online, CPU drops to 20% and the scaler starts frantically terminating instances - causing instability called 'flapping'.

8.4 Cooldown Configuration Examples (AWS Auto Scaling)

Scenario Recommended Cooldown Settings
Fast-booting containers (Docker/ECS) Scale-Out: 90s
Standard EC2 instances (Node.js/Python app) Scale-Out: 180s
Heavy Java applications (long JVM warmup) Scale-Out: 300s
Database-backed workers (cache warmup needed) Scale-Out: 300s
Microservices with health checks Scale-Out: 120s

8.5 Cooldown Tuning Tips

  • Set scale-in cooldown LONGER than scale-out - it's safer to keep an extra server than to remove one prematurely

  • Use Instance Warmup Period instead of Default Cooldown for more precise control in target tracking policies

  • Monitor 'scale-in' events in CloudWatch - if instances terminate within 10 minutes of launching, your scale-in cooldown is too short

  • For Kubernetes HPA (Horizontal Pod Autoscaler), use stabilizationWindowSeconds to achieve the same effect

  • Do NOT set cooldown to 0 - even in testing environments - it causes flapping and misleading metrics

8.6 Cooldown vs. Warmup - Key Difference

Cooldown Period Warmup Period
Controls WHEN the next scaling action is evaluated Controls WHEN a new instance is included in metric calculations
Applied to the Auto Scaling Group level Applied to each individual new instance
Prevents over-scaling during metric lag Prevents skewing group CPU average with a cold instance
Example: 'Don't add more servers for 5 minutes' Example: 'Ignore this new server's CPU for 2 minutes while it boots'

9. Questions

Q1. What is scaling in software systems?

Answer

Scaling is the ability of a system to handle increasing or decreasing workload by adjusting resources. When traffic grows, you scale up (add resources) to maintain performance. When traffic drops, you scale down to reduce costs. Example: A food delivery app serves 1,000 orders normally. During lunch hour it handles 50,000 - scaling ensures it doesn't crash.

Q2. What is the difference between vertical and horizontal scaling?

Answer

Vertical scaling (scale up) upgrades a single server - more CPU, more RAM. Simple but has a hardware ceiling and a single point of failure. Horizontal scaling (scale out) adds more servers. More complex but virtually unlimited capacity and fault tolerant. Example: A small blog (vertical) vs. Netflix (horizontal - thousands of servers).

Q3. What is a load balancer and why is it needed?

Answer

A load balancer sits in front of your servers and distributes incoming requests across them. Without it, one server would receive all traffic and get overwhelmed while others sit idle. It also detects unhealthy servers and stops sending traffic to them. Example: Like a receptionist directing patients to the least-busy doctor at a clinic.

Q4. What is stateless application?

Answer

A stateless application does not store any user-specific data in the server's memory between requests. Every request is independent and any server can handle it. Session data is stored externally in Redis or a database. This is essential for horizontal scaling - if state were stored on Server A, routing the next request to Server B would break the user experience.

Q5. What is Redis and why is it used in scaling?

Answer

Redis is an in-memory key-value store used for caching, session management, rate limiting, and pub/sub messaging. In scaling, it solves the stateless problem: instead of each server having its own session memory, all servers share one Redis cluster. It's also used to cache expensive database queries - serving results in microseconds instead of running the same SQL repeatedly.

Q6. What is Auto Scaling?

Answer

Auto Scaling automatically adds new servers when load increases beyond a threshold (e.g. CPU > 70%) and removes servers when load decreases (CPU < 30%). It eliminates manual intervention during traffic spikes. Cloud platforms like AWS, Azure, and GCP all provide auto scaling services. Example: An online store automatically adds 50 servers during a flash sale and removes them 2 hours later.

Q7. What is the difference between Round Robin and Least Connections load balancing?

Answer

Round Robin distributes requests equally in rotation (Server 1, 2, 3, 1, 2, 3...). It works well when all requests take similar time to process. Least Connections routes each new request to the server currently handling the fewest active connections - better when some requests are heavy (e.g. a file upload) and others are light (e.g. a health-check ping). For an API where some endpoints are 10x slower, Least Connections prevents overloading a server with many slow requests.

Q8. What is a cooldown period in auto scaling and why does it matter?

Answer

A cooldown period is a wait time enforced between scaling actions. After adding servers, the system waits (e.g. 5 minutes) before evaluating whether to add more. This is critical because new instances take time to boot and contribute - if the scaler reacted immediately, it would see CPU still high and keep launching servers unnecessarily. Without cooldown, you get 'flapping' - rapid add/remove cycles that cause instability and high costs.

Q9. What is the 'thundering herd' problem and how do you solve it?

Answer

When multiple new servers start simultaneously with empty caches, they all hit the database at once looking for the same data - causing a 'thundering herd'. Solutions: (1) Cache warming on startup - pre-load hot data into Redis before the instance starts accepting traffic. (2) Staggered startup - don't start all instances at exactly the same time. (3) Circuit breaker - if the DB is overwhelmed, return a cached or default response instead of queuing more requests.

Q10. What is the difference between scale-in cooldown and scale-out cooldown?

Answer

Scale-out cooldown controls how long to wait after ADDING instances before considering adding more - typically 2-5 minutes to let new servers warm up. Scale-in cooldown controls how long to wait after REMOVING instances before considering removing more - typically longer (5-10 minutes) because removing a server prematurely can cause load spikes. Best practice: always set scale-in cooldown longer than scale-out.

Q11. How do you handle sticky sessions in a horizontally scaled environment?

Answer

Sticky sessions (IP Hash) force a user to always go to the same server. This breaks horizontal scaling because if that server goes down, the user's session is lost. The correct solution is to eliminate the need for sticky sessions entirely: move session data to Redis (shared across all servers), use JWT tokens (stateless authentication), and design APIs to be stateless. True stateless design makes sticky sessions unnecessary.

Q12. What is a read replica and when should you add one?

Answer

A read replica is a copy of the primary database that handles only SELECT (read) queries. The primary handles all writes. You add read replicas when database read queries are bottlenecking your application - typically when you see slow SELECT performance despite good server specs, or when CPU on the DB server is consistently above 70%. Example: An analytics dashboard running 10,000 reports per hour queries read replicas, leaving the primary DB free for order writes.

SCENARIO QUESTIONS WITH FULL ANSWERS

Scenario Q1: Your API response time suddenly increased from 50ms to 8 seconds. Auto scaling launched 10 new servers, but it made no difference. Why?

Root Cause & Answer

Adding more app servers did NOT help because the bottleneck was NOT the app layer - it was the database. More app servers = more concurrent DB connections = MORE pressure on an already-overwhelmed database. Diagnosis steps: (1) Check DB CPU, connection count, and slow query log. (2) Look for table lock contention - a long-running write transaction blocking reads. (3) Check if connection pool is exhausted (PgBouncer queue depth). Solution: Immediately add a read replica for read traffic. Enable query result caching in Redis. Kill any blocking long-running queries. Set connection pool limits. Add indexes if missing. Lesson: Always identify the bottleneck layer before scaling.

Scenario Q2: Your system scales correctly during daytime but costs 10x more than expected. What's happening?

Root Cause & Answer

The system is over-scale and not scaling back in properly. Common causes: (1) Scale-in cooldown is too long - instances stay running for hours after load drops. (2) Scale-in threshold is set too conservatively - e.g. 'remove instance only when CPU < 10%' but CPU never drops below 25% even at low traffic. (3) Scheduled scaling added instances at 8 AM but forgot to schedule scale-in at midnight. (4) Developer pushed a config change that disabled scale-in accidentally. Fix: Review and shorten scale-in cooldown. Adjust scale-in CPU threshold to 30-40%. Add budget alerts with automatic notifications at 150% of expected cost. Use AWS Cost Anomaly Detection.

Scenario Q4: Traffic increased 5x in one hour. Auto scaling worked, but users are reporting they keep getting logged out. What's wrong?

Root Cause & Answer

Classic stateful session problem. New servers added by auto scaling don't have the session data stored in memory on the original servers. When the load balancer routes a user's request to a new server, that server has no session - user is logged out. Root cause: sessions were stored in server memory (in-process), not externalized. Immediate fix: Enable sticky sessions on the load balancer as a temporary patch (routes each user back to their original server). Proper fix: Migrate sessions to Redis. All servers share Redis - sessions persist regardless of which server handles the request. Configure session TTL of 30 minutes for security.

Scenario Q5: Your company has a weekly peak every Monday morning when employees log in. How do you scale for it?

Answer

Use Scheduled Scaling combined with Predictive Scaling. Analyze the last 12 weeks of traffic data - confirm the pattern is consistent. Configure scheduled scaling to add capacity at 7:45 AM every Monday (before users arrive at 8:00 AM). This eliminates cold start lag. Also configure a slightly larger scale-out in December/January when employee logins may be higher after holidays. Use Predictive Scaling (AWS) to automatically refine the pre-warm quantities based on actual vs predicted traffic each week. Set minimum instance count to 3 during business hours (Mon-Fri 7 AM-7 PM) and 1 overnight. Set a hard maximum of 50 instances with a cost alert at 30.

Scenario Q5: You are asked to design the scaling strategy for a new product launch expected to get 1 million signups in the first hour. What do you do?

Answer

Pre-launch preparation (T-72h to T-1h): (1) Load test at 3x expected peak - 3M requests/hour - using tools like k6 or Locust. Identify and fix all bottlenecks. (2) Pre-scale infrastructure to 50% of estimated peak capacity 2 hours before launch (scheduled scaling). (3) Configure auto scaling to aggressively scale out at 50% CPU threshold (not 70%) to stay ahead of demand. (4) Increase DB connection pool limits. Pre-warm Redis cache with popular landing page data. (5) Enable CDN for all static assets (JS, CSS, images) - offload 80% of traffic from origin. (6) Prepare a 'queue users' fallback: if signups exceed capacity, show a waiting room page. (7) Have engineers on war-room standby with runbooks ready. (8) Set a hard 20,000 instance cap with budget alerts every 30 minutes. Post-launch: monitor p95 latency (not just average), error rate, and queue depth every 5 minutes.

How Would You Scale a System?

Scaling a production system requires five pillars working together: (1) Stateless Design - externalize all sessions and state to Redis or a database so any server can handle any request. (2) Load Balancing - distribute traffic across multiple instances using Least Connections or weighted algorithms. (3) Auto Scaling - define CPU/memory thresholds that trigger automatic instance provisioning and de-provisioning. (4) Caching - use Redis to cache expensive queries and reduce database load by 80-90%. (5) Database Optimization - add read replicas for read-heavy workloads, use connection pooling, and consider sharding for massive datasets.

Quick Concept Summary

Concept One-Line Definition
Vertical Scaling Make the server bigger (more RAM, more CPU)
Horizontal Scaling Add more servers and distribute the load
Stateless Design Servers hold no user data - all state lives in Redis/DB
Load Balancer Distributes incoming requests across multiple servers
Auto Scaling Automatically adds/removes servers based on metrics
Cooldown Period Wait time between scaling actions to let new instances stabilize
Instance Warmup Time given to a new instance before its metrics count in scaling decisions
Queue Scaling Workers auto scale based on how many jobs are waiting in the queue
Sticky Sessions Avoid stateless systems breaks horizontal scaling
Cold Start Delay when a new instance boot - mitigate with warm pools
Thundering Herd All new instances hitting DB at once - solved by cache warming
#scaling#autoscaling#devops#architecture#system-design#cloud-computing
39 views

Comments

Join the discussion

No comments yet. Be the first to comment.