Edge Computing in 2018: Escaping the Latency Trap
Let's be honest: the centralized cloud promise is starting to crack. For years, we've been told to dump everything into AWS us-east-1 or a massive data center in Frankfurt and call it a day. But physics is stubborn. The speed of light is finite.
If your users are in Oslo and your server is in Dublin, you are fighting a losing battle against latency. A round-trip time (RTT) of 35-40ms is acceptable for a blog, but for High-Frequency Trading (HFT), real-time gaming, or the exploding industrial IoT sector here in the Nordics, it is a disaster. "The Edge" isn't just a buzzword for 2019 conference slides; it's a practical architecture requirement today.
I see too many developers trying to optimize code execution time by microseconds while ignoring the 40 milliseconds lost on the wire. Stop it. Here is how we fix the infrastructure first.
The Use Case: Industrial IoT & Data Sovereignty
Norway is heavy on industry. Oil, gas, maritime, and renewable energy. We are seeing a massive influx of sensors pushing data via MQTT. Sending raw sensor data to a central cloud for processing is inefficient and expensive. Bandwidth costs money. Ingress is usually free, but if you need to pull that data back out? You pay.
The solution? Process at the edge. Deploy a high-performance VPS in Oslo (like a CoolVDS NVMe instance) to act as an aggregation gateway. Filter the noise, aggregate the metrics, and send only the insights to the central cloud.
Configuring the Edge Gateway (MQTT)
Mosquitto is the standard here. On an Ubuntu 18.04 LTS edge node, we don't just apt-get install; we tune it for high throughput.
# Install Mosquitto
sudo apt-get update
sudo apt-get install mosquitto mosquitto-clients
# Check status
systemctl status mosquittoThe default config is weak. For an edge node handling thousands of sensors, we need to optimize the `mosquitto.conf` to handle persistence (saving data if the uplink to the central cloud dies) and connection limits.
# /etc/mosquitto/mosquitto.conf
pid_file /var/run/mosquitto.pid
persistence true
persistence_location /var/lib/mosquitto/
# Logging to monitor connection churn
log_dest file /var/log/mosquitto/mosquitto.log
# Tweak for performance
max_queued_messages 2000
max_inflight_messages 40
# Listen on specific interface (Security best practice)
listener 1883 10.10.0.5
allow_anonymous false
password_file /etc/mosquitto/passwdPro Tip: Never expose port 1883 directly to the public internet without TLS. On CoolVDS, we recommend setting up a local private network or using `stunnel` / Nginx as a TLS terminator if you aren't using MQTT over TLS natively. The overhead on the CPU is negligible with modern AES-NI instructions found in our processors.
The GDPR Reality: Data Must Stay Home
Since May 25th, the game has changed. The Datatilsynet (Norwegian Data Protection Authority) is not joking around. If you are processing personal data of Norwegian citizens, keeping that data within national borders isn't just a "nice to have"—it's a risk mitigation strategy.
Hosting on a US-owned cloud provider's "European" region is legally complex. Using a Norwegian provider ensures clear jurisdiction. This is "Compliance at the Edge." You keep the PII (Personally Identifiable Information) in the Oslo VPS, anonymize it locally, and only send the sanitized datasets abroad for analysis.
Tuning the Linux Kernel for Low Latency
If you are running a generic VPS, you are sharing kernel resources in ways that hurt latency. This is why we rely on KVM at CoolVDS. Unlike OpenVZ/LXC, KVM gives us a dedicated kernel. But out of the box, Linux is tuned for throughput, not latency. Let's fix that.
Here are the `sysctl` settings I apply to every edge node intended for real-time traffic:
# /etc/sysctl.conf updates
# Increase the range of ephemeral ports
net.ipv4.ip_local_port_range = 1024 65535
# Fast recycling of TIME_WAIT sockets (essential for high request rates)
net.ipv4.tcp_tw_reuse = 1
# Increase max open files
fs.file-max = 2097152
# Swapping kills latency. Reduce swappiness drastically.
vm.swappiness = 10
vm.vfs_cache_pressure = 50
# Congestion control - BBR is available in newer kernels (4.9+),
# ensure your VPS image supports it for better throughput over shaky connections.
net.core.default_qdisc = fq
net.ipv4.tcp_congestion_control = bbrApply these with `sysctl -p`. If you are on an older kernel that doesn't support BBR, stick to `cubic`, but BBR is a game-changer for edge nodes communicating over the public internet.
The Storage Bottleneck: Why NVMe is Non-Negotiable
In 2015, SSDs were a luxury. In 2018, standard SATA SSDs are the baseline. But for edge workloads, especially databases like InfluxDB (for time-series data) or Redis, SATA queues get saturated.
When you have a burst of data—say, a sensor spike or a flash sale—IOPS (Input/Output Operations Per Second) become your bottleneck. I've seen `iowait` spike to 40% on standard SSD VPS providers during load tests. That freezes your application regardless of how much CPU you have.
| Storage Type | Avg Random Read IOPS | Latency Impact |
|---|---|---|
| HDD (Legacy) | ~100 | Disastrous |
| SATA SSD | ~5,000 - 10,000 | Acceptable |
| CoolVDS NVMe | ~300,000+ | Near-Instant |
CoolVDS standardization on NVMe isn't a marketing gimmick; it's an engineering necessity for avoiding the "noisy neighbor" effect on disk I/O.
Securing the Edge
Edge nodes are exposed. They are the first line of defense. You cannot rely on a perimeter firewall alone; the node itself must be hardened. Here is a baseline `iptables` configuration script to lock down a node, allowing only SSH (on a custom port!), Web, and MQTT.
#!/bin/bash
# Flush existing rules
iptables -F
# Default policies: Drop everything
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
# Allow loopback
iptables -A INPUT -i lo -j ACCEPT
# Allow established connections (so you don't lock yourself out)
iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
# Allow SSH (Assumes port 2222 - move off port 22!)
iptables -A INPUT -p tcp --dport 2222 -j ACCEPT
# Allow HTTP/HTTPS
iptables -A INPUT -p tcp --dport 80 -j ACCEPT
# Allow MQTT (TLS)
iptables -A INPUT -p tcp --dport 8883 -j ACCEPT
# Log dropped packets (careful with disk space)
iptables -A INPUT -m limit --limit 5/min -j LOG --log-prefix "IPTables-Dropped: "
Why Location Matters: The NIX Connection
Finally, let's talk about peering. CoolVDS is peered directly at NIX (Norwegian Internet Exchange). If your customers are on Telenor, Telia, or Altibox, their request hits our datacenter in Oslo almost instantly. There are no hops through Sweden or Denmark.
We measured a standard request flow:
User (Oslo) -> AWS (Dublin): ~38ms
User (Oslo) -> CoolVDS (Oslo): ~2ms
For a static site, you won't care. For a backend API serving a mobile app? That 36ms difference is the difference between a "snappy" app and a "sluggish" one. Multiply that by 10 API calls per session, and you have lost nearly half a second just on travel time.
Final Thoughts
The cloud isn't going away, but the centralized model is evolving. We need distributed intelligence. Whether you are aggregating IoT metrics or just trying to serve a WordPress site faster to a Norwegian audience, the geography of your server matters.
Don't let high latency kill your user experience. Spin up a test environment where the physics works in your favor.
Ready to test the difference? Deploy a KVM NVMe instance on CoolVDS today and ping 127.0.0.1 from the heart of Oslo.