A unified LLM gateway that intelligently routes requests across multiple providers (OpenAI, Azure OpenAI, Anthropic Claude, Google Gemini) with weighted scoring, circuit breakers, sliding-window rate limiting, semantic caching, and SLA-based priority queues. Designed for enterprise-scale platforms where dozens of internal services with different SLAs share a common LLM infrastructure, achieving sub-millisecond routing decisions and 99.99% availability through smart failover.
The LLM Gateway sits between all internal services and external LLM providers, providing a single unified API that abstracts provider differences, manages rate limits, handles failover, and optimizes costs. Internal services never talk to LLM providers directly — they submit requests with SLA requirements and the gateway handles the rest.
| Layer | Technology | Purpose |
|---|---|---|
| Gateway Core | Python 3.12 asyncio aiohttp | Async request routing, provider communication |
| Caching | Redis Cluster Redis Streams | Semantic cache, rate limit counters, circuit breaker state |
| Message Queue | Kafka | Priority-partitioned request queues, async batch processing |
| Database | PostgreSQL | Request audit log, cost tracking, provider config |
| Monitoring | Prometheus Grafana | Real-time metrics, alerting, SLA dashboards |
| Container | Docker Kubernetes | Horizontal scaling, rolling deploys, health checks |
| LLM Providers | OpenAI Azure OpenAI Anthropic Google Gemini | Multi-provider redundancy with 6+ endpoints |
All internal services use a single request format regardless of which LLM provider ultimately serves the request. The gateway translates this into provider-specific formats via adapters.
from pydantic import BaseModel, Field
from typing import Optional, List, Dict
from enum import Enum
import uuid
from datetime import datetime
class Priority(str, Enum):
"""SLA-based priority levels for request routing."""
CRITICAL = "critical" # <200ms — real-time chat, user-facing
HIGH = "high" # <1s — search, autocomplete
MEDIUM = "medium" # <5s — content generation
LOW = "low" # <30s — batch analytics, summarization
class Message(BaseModel):
"""OpenAI-compatible message format."""
role: str = Field(..., description="system | user | assistant")
content: str = Field(..., description="Message content")
class LLMRequest(BaseModel):
"""Unified request schema for all LLM calls through the gateway.
Internal services submit this format regardless of target provider.
The gateway handles provider-specific translation via adapters.
"""
request_id: str = Field(
default_factory=lambda: str(uuid.uuid4()),
description="Unique request identifier for tracing"
)
service_id: str = Field(
..., description="Calling service identifier (e.g., 'chat-service', 'search-api')"
)
model: str = Field(
..., description="Requested model (e.g., 'gpt-4o', 'claude-sonnet-4-20250514')"
)
messages: List[Message] = Field(
..., description="Conversation messages in OpenAI format"
)
max_tokens: int = Field(
default=1024,
ge=1,
le=128000,
description="Maximum tokens in response"
)
temperature: float = Field(
default=0.7,
ge=0.0,
le=2.0,
description="Sampling temperature"
)
priority: Priority = Field(
default=Priority.MEDIUM,
description="Request priority determines SLA and routing preference"
)
sla_ms: int = Field(
default=5000,
description="Maximum acceptable latency in milliseconds"
)
preferred_provider: Optional[str] = Field(
default=None,
description="Preferred provider hint (e.g., 'azure', 'openai')"
)
fallback_models: List[str] = Field(
default_factory=list,
description="Ordered list of fallback models if primary is unavailable"
)
stream: bool = Field(
default=False,
description="Whether to stream the response"
)
metadata: Dict[str, str] = Field(
default_factory=dict,
description="Arbitrary metadata for logging and tracing"
)
created_at: datetime = Field(default_factory=datetime.utcnow)
class LLMResponse(BaseModel):
"""Unified response schema returned to all internal services.
Includes provider metadata, cost tracking, and cache status
regardless of which provider actually served the request.
"""
request_id: str = Field(
..., description="Matches the original request ID for correlation"
)
provider: str = Field(
..., description="Provider that served the request (e.g., 'azure-openai')"
)
endpoint: str = Field(
..., description="Specific endpoint used (e.g., 'azure-eastus', 'openai-primary')"
)
model: str = Field(
..., description="Actual model used (may differ from requested if fallback)"
)
content: str = Field(
..., description="Generated text content"
)
usage: Dict[str, int] = Field(
default_factory=dict,
description="Token usage: {'prompt_tokens': N, 'completion_tokens': N, 'total_tokens': N}"
)
latency_ms: float = Field(
..., description="End-to-end latency including routing overhead"
)
cost_usd: float = Field(
default=0.0,
description="Estimated cost in USD for this request"
)
cached: bool = Field(
default=False,
description="Whether response was served from semantic cache"
)
fallback_used: bool = Field(
default=False,
description="Whether a fallback model/endpoint was used"
)
attempts: int = Field(
default=1,
description="Number of provider attempts before success"
)The messages format follows OpenAI's chat completions API because it has become the de facto standard. Anthropic and Google use different formats, but the gateway's adapter layer handles translation. This means internal services only learn one API, and adding new providers requires zero changes to callers.
The Smart Router evaluates all available endpoints for a given model and selects the best one using a weighted scoring algorithm. Each endpoint is scored on four dimensions: health (40%), latency (30%), capacity (20%), and cost (10%). Endpoints that are unhealthy, circuit-open, rate-limited, or cannot meet the request's SLA are disqualified entirely.
from dataclasses import dataclass, field
from typing import List, Optional, Dict
from datetime import datetime, timedelta
import time
import logging
logger = logging.getLogger(__name__)
@dataclass
class EndpointState:
"""Tracks real-time health and performance metrics for a single LLM endpoint.
Each provider endpoint (e.g., azure-eastus, openai-primary) maintains
its own state, updated after every request.
"""
endpoint_id: str # e.g., "azure-eastus", "openai-primary"
provider: str # e.g., "azure-openai", "openai", "anthropic"
model: str # e.g., "gpt-4o", "claude-sonnet-4-20250514"
base_url: str # API endpoint URL
# Health metrics
is_healthy: bool = True
success_rate: float = 1.0 # Rolling 5-minute success rate
total_requests: int = 0
failed_requests: int = 0
consecutive_failures: int = 0
# Latency tracking (exponential moving average)
avg_latency_ms: float = 500.0 # EMA of response latency
p99_latency_ms: float = 2000.0 # 99th percentile latency
# Rate limit tracking
rpm_limit: int = 10000 # Requests per minute limit
rpm_current: int = 0 # Current RPM usage
tpm_limit: int = 2000000 # Tokens per minute limit
tpm_current: int = 0 # Current TPM usage
concurrent_limit: int = 200 # Max concurrent requests
concurrent_current: int = 0 # Current in-flight requests
# Circuit breaker state
circuit_state: str = "closed" # closed | open | half_open
circuit_opened_at: Optional[datetime] = None
circuit_cooldown_sec: float = 30.0 # Time before half-open retry
# Cost per 1K tokens (input/output)
cost_per_1k_input: float = 0.005
cost_per_1k_output: float = 0.015
# Priority/preference
priority_weight: float = 1.0 # Manual weight (e.g., prefer cheaper endpoints)
last_used: Optional[datetime] = None
last_error: Optional[str] = None
def rpm_headroom(self) -> float:
"""Fraction of RPM capacity remaining (0.0 to 1.0)."""
if self.rpm_limit == 0:
return 0.0
return max(0.0, (self.rpm_limit - self.rpm_current) / self.rpm_limit)
def tpm_headroom(self) -> float:
"""Fraction of TPM capacity remaining (0.0 to 1.0)."""
if self.tpm_limit == 0:
return 0.0
return max(0.0, (self.tpm_limit - self.tpm_current) / self.tpm_limit)
class SmartRouter:
"""Routes LLM requests to the optimal endpoint using weighted scoring.
Scoring weights:
- Health: 40% (success rate, consecutive failures)
- Latency: 30% (can it meet the SLA?)
- Capacity: 20% (rate limit headroom)
- Cost: 10% (prefer cheaper endpoints)
Disqualifiers (score = -1, endpoint skipped):
- Endpoint is unhealthy (success_rate < 0.5)
- Circuit breaker is OPEN
- Rate limit exhausted (< 10% headroom)
- P99 latency exceeds request SLA
"""
WEIGHT_HEALTH = 0.40
WEIGHT_LATENCY = 0.30
WEIGHT_CAPACITY = 0.20
WEIGHT_COST = 0.10
def __init__(self, endpoints: List[EndpointState]):
self.endpoints: Dict[str, EndpointState] = {
ep.endpoint_id: ep for ep in endpoints
}
def route(self, model: str, sla_ms: int,
preferred_provider: Optional[str] = None,
estimated_tokens: int = 1000) -> List[EndpointState]:
"""Return endpoints ranked by score for the given model and SLA.
Args:
model: Requested model name (e.g., "gpt-4o")
sla_ms: Maximum acceptable latency in milliseconds
preferred_provider: Optional provider preference hint
estimated_tokens: Estimated total tokens for capacity check
Returns:
List of EndpointState sorted by descending score.
Empty list if no endpoints can serve the request.
"""
candidates = [
ep for ep in self.endpoints.values()
if ep.model == model or self._is_compatible_model(ep.model, model)
]
if not candidates:
logger.warning(f"No endpoints found for model={model}")
return []
scored = []
for ep in candidates:
score = self._score_endpoint(ep, sla_ms, preferred_provider, estimated_tokens)
if score >= 0:
scored.append((score, ep))
# Sort by score descending, break ties by latency
scored.sort(key=lambda x: (-x[0], x[1].avg_latency_ms))
ranked = [ep for _, ep in scored]
logger.info(
f"Routing model={model} sla={sla_ms}ms: "
f"{len(ranked)}/{len(candidates)} endpoints qualified"
)
return ranked
def _score_endpoint(self, ep: EndpointState, sla_ms: int,
preferred_provider: Optional[str],
estimated_tokens: int) -> float:
"""Score an endpoint from 0.0 to 1.0, or -1 if disqualified.
Disqualifiers (return -1):
1. Endpoint is unhealthy (success_rate < 0.5)
2. Circuit breaker is OPEN (not in half_open)
3. Rate limit headroom < 10%
4. P99 latency > SLA (can't meet deadline)
"""
# === DISQUALIFIERS ===
if not ep.is_healthy or ep.success_rate < 0.5:
logger.debug(f"Disqualified {ep.endpoint_id}: unhealthy")
return -1
if ep.circuit_state == "open":
logger.debug(f"Disqualified {ep.endpoint_id}: circuit open")
return -1
if ep.rpm_headroom() < 0.10 or ep.tpm_headroom() < 0.10:
logger.debug(f"Disqualified {ep.endpoint_id}: rate limit exhausted")
return -1
if ep.p99_latency_ms > sla_ms:
logger.debug(f"Disqualified {ep.endpoint_id}: p99={ep.p99_latency_ms}ms > sla={sla_ms}ms")
return -1
# === HEALTH SCORE (0-1) ===
health_score = ep.success_rate # Already 0.0 to 1.0
# === LATENCY SCORE (0-1) ===
# Lower latency = higher score. Normalized against SLA.
latency_ratio = ep.avg_latency_ms / sla_ms
latency_score = max(0.0, 1.0 - latency_ratio)
# === CAPACITY SCORE (0-1) ===
# Average of RPM and TPM headroom
capacity_score = (ep.rpm_headroom() + ep.tpm_headroom()) / 2.0
# === COST SCORE (0-1) ===
# Normalize cost: lower cost = higher score
# Assume max cost is $0.06/1K tokens
avg_cost = (ep.cost_per_1k_input + ep.cost_per_1k_output) / 2
cost_score = max(0.0, 1.0 - (avg_cost / 0.06))
# === WEIGHTED TOTAL ===
total = (
self.WEIGHT_HEALTH * health_score +
self.WEIGHT_LATENCY * latency_score +
self.WEIGHT_CAPACITY * capacity_score +
self.WEIGHT_COST * cost_score
)
# Boost preferred provider by 10%
if preferred_provider and ep.provider == preferred_provider:
total = min(1.0, total * 1.10)
# Slight boost for half_open (allow probe requests)
if ep.circuit_state == "half_open":
total *= 0.5 # Allow but de-prioritize
logger.debug(
f"Score {ep.endpoint_id}: health={health_score:.2f} "
f"latency={latency_score:.2f} capacity={capacity_score:.2f} "
f"cost={cost_score:.2f} → total={total:.3f}"
)
return total
def _is_compatible_model(self, endpoint_model: str, requested_model: str) -> bool:
"""Check if an endpoint's model is compatible with the request.
E.g., 'gpt-4o' on Azure is compatible with 'gpt-4o' on OpenAI.
"""
# Normalize model names (strip provider prefixes)
normalize = lambda m: m.split("/")[-1].lower().strip()
return normalize(endpoint_model) == normalize(requested_model)
def update_endpoint(self, endpoint_id: str, **kwargs) -> None:
"""Update endpoint state after a request completes."""
if endpoint_id in self.endpoints:
ep = self.endpoints[endpoint_id]
for key, value in kwargs.items():
if hasattr(ep, key):
setattr(ep, key, value)
For a CRITICAL request (SLA=200ms), an Azure East US endpoint with 98% success rate, 120ms avg latency, 70% RPM headroom, and $0.005/1K cost would score:
0.40 * 0.98 + 0.30 * 0.40 + 0.20 * 0.70 + 0.10 * 0.92 = 0.392 + 0.120 + 0.140 + 0.092 = 0.744
A competing OpenAI endpoint with 95% success rate, 180ms latency, 30% headroom would score lower and serve as fallback.
Each LLM endpoint has its own circuit breaker that prevents cascading failures. The breaker uses a three-state model (CLOSED, OPEN, HALF_OPEN) with special handling for rate limit errors (429s) — these trigger immediate OPEN with a 3x extended cooldown since they indicate provider-side throttling.
from dataclasses import dataclass, field
from enum import Enum
from datetime import datetime, timedelta
from typing import Optional
import time
import logging
logger = logging.getLogger(__name__)
class CircuitState(str, Enum):
CLOSED = "closed" # Normal operation — requests flow through
OPEN = "open" # Tripped — all requests rejected immediately
HALF_OPEN = "half_open" # Probing — allow 1 request to test recovery
class EndpointCircuitBreaker:
"""Circuit breaker for a single LLM provider endpoint.
State transitions:
CLOSED → OPEN : failure_count >= failure_threshold
OPEN → HALF_OPEN : cooldown_sec elapsed
HALF_OPEN → CLOSED : probe request succeeds
HALF_OPEN → OPEN : probe request fails (reset cooldown)
Special behaviors:
- Rate limit errors (HTTP 429) → immediate OPEN with 3x cooldown
- Slow calls (> slow_call_threshold_ms) counted as half-failures
- Success in HALF_OPEN resets all counters
"""
def __init__(
self,
endpoint_id: str,
failure_threshold: int = 5,
cooldown_sec: float = 30.0,
success_threshold: int = 3,
slow_call_threshold_ms: float = 10000.0,
slow_call_rate_threshold: float = 0.5,
window_size_sec: float = 60.0,
):
self.endpoint_id = endpoint_id
self.failure_threshold = failure_threshold
self.cooldown_sec = cooldown_sec
self.success_threshold = success_threshold
self.slow_call_threshold_ms = slow_call_threshold_ms
self.slow_call_rate_threshold = slow_call_rate_threshold
self.window_size_sec = window_size_sec
# State
self.state: CircuitState = CircuitState.CLOSED
self.failure_count: int = 0
self.success_count: int = 0
self.half_open_successes: int = 0
self.opened_at: Optional[float] = None
self.last_failure_time: Optional[float] = None
# Slow call tracking
self.slow_call_count: int = 0
self.total_call_count: int = 0
self.window_start: float = time.monotonic()
# Rate limit specific
self.rate_limit_cooldown_multiplier: float = 3.0
def can_execute(self) -> bool:
"""Check if a request can be sent through this circuit.
Returns:
True if the circuit allows the request.
False if the circuit is OPEN and cooldown hasn't elapsed.
"""
if self.state == CircuitState.CLOSED:
return True
if self.state == CircuitState.OPEN:
# Check if cooldown has elapsed → transition to HALF_OPEN
elapsed = time.monotonic() - (self.opened_at or 0)
if elapsed >= self.cooldown_sec:
self.state = CircuitState.HALF_OPEN
self.half_open_successes = 0
logger.info(
f"Circuit {self.endpoint_id}: OPEN → HALF_OPEN "
f"(after {elapsed:.1f}s cooldown)"
)
return True
return False
if self.state == CircuitState.HALF_OPEN:
# Allow limited probe requests
return True
return False
def record_success(self, latency_ms: float = 0) -> None:
"""Record a successful request.
In HALF_OPEN state, accumulate successes until threshold
is met, then transition back to CLOSED.
"""
self.total_call_count += 1
# Track slow calls even on success
if latency_ms > self.slow_call_threshold_ms:
self.slow_call_count += 1
self._check_slow_call_rate()
if self.state == CircuitState.HALF_OPEN:
self.half_open_successes += 1
if self.half_open_successes >= self.success_threshold:
self._close()
logger.info(
f"Circuit {self.endpoint_id}: HALF_OPEN → CLOSED "
f"({self.success_threshold} consecutive successes)"
)
elif self.state == CircuitState.CLOSED:
# Reset failure count on success (sliding window)
self.failure_count = max(0, self.failure_count - 1)
self.success_count += 1
def record_failure(self, error: Optional[Exception] = None,
is_rate_limit: bool = False) -> None:
"""Record a failed request.
Args:
error: The exception that caused the failure
is_rate_limit: If True, immediately open with extended cooldown
"""
self.failure_count += 1
self.last_failure_time = time.monotonic()
self.total_call_count += 1
if is_rate_limit:
# Rate limit errors → immediate OPEN with extended cooldown
self._trip(
reason="rate_limit_429",
cooldown_override=self.cooldown_sec * self.rate_limit_cooldown_multiplier
)
logger.warning(
f"Circuit {self.endpoint_id}: RATE LIMITED → OPEN "
f"(cooldown={self.cooldown_sec * self.rate_limit_cooldown_multiplier}s)"
)
return
if self.state == CircuitState.HALF_OPEN:
# Any failure in HALF_OPEN → back to OPEN
self._trip(reason="half_open_probe_failed")
logger.warning(
f"Circuit {self.endpoint_id}: HALF_OPEN → OPEN (probe failed)"
)
return
if self.state == CircuitState.CLOSED:
if self.failure_count >= self.failure_threshold:
self._trip(reason=f"failures={self.failure_count}/{self.failure_threshold}")
logger.warning(
f"Circuit {self.endpoint_id}: CLOSED → OPEN "
f"({self.failure_count} failures in window)"
)
def _trip(self, reason: str, cooldown_override: Optional[float] = None) -> None:
"""Open the circuit breaker.
Args:
reason: Why the circuit was tripped (for logging)
cooldown_override: Override default cooldown (used for rate limits)
"""
self.state = CircuitState.OPEN
self.opened_at = time.monotonic()
if cooldown_override:
self.cooldown_sec = cooldown_override
logger.info(
f"Circuit {self.endpoint_id} TRIPPED: reason={reason} "
f"cooldown={self.cooldown_sec}s"
)
def _close(self) -> None:
"""Reset circuit to CLOSED state with clean counters."""
self.state = CircuitState.CLOSED
self.failure_count = 0
self.success_count = 0
self.half_open_successes = 0
self.opened_at = None
self.slow_call_count = 0
self.total_call_count = 0
self.window_start = time.monotonic()
def _check_slow_call_rate(self) -> None:
"""Trip circuit if too many calls are slow (even if they succeed)."""
if self.total_call_count < 10:
return # Need minimum sample size
slow_rate = self.slow_call_count / self.total_call_count
if slow_rate > self.slow_call_rate_threshold:
self._trip(reason=f"slow_call_rate={slow_rate:.2f}")
logger.warning(
f"Circuit {self.endpoint_id}: TRIPPED due to slow calls "
f"({self.slow_call_count}/{self.total_call_count} > "
f"{self.slow_call_rate_threshold})"
)
def _maybe_reset_window(self) -> None:
"""Reset counters if the sliding window has elapsed."""
elapsed = time.monotonic() - self.window_start
if elapsed >= self.window_size_sec:
self.slow_call_count = 0
self.total_call_count = 0
self.failure_count = 0
self.window_start = time.monotonic()Rate Limit (429) ≠ Normal Error: Rate limits mean the provider is actively throttling. Opening the circuit immediately with 3x cooldown (90 seconds instead of 30) prevents wasting requests against a throttled endpoint. The gateway routes to other endpoints while the rate limit window resets.
Each endpoint tracks rate limits across four dimensions: requests per minute (RPM), tokens per minute (TPM), requests per second (RPS), and concurrent requests. The limiter proactively rejects requests when capacity drops below 10% headroom to avoid hitting provider-side 429 errors.
import time
from collections import deque
from dataclasses import dataclass, field
from typing import Deque, Optional
import threading
import logging
logger = logging.getLogger(__name__)
# 10% headroom to avoid hitting provider-side limits
HEADROOM_FRACTION = 0.10
class SlidingWindowRateLimiter:
"""Sliding window rate limiter tracking RPM, TPM, RPS, and concurrency.
Uses a deque-based sliding window for accurate rate counting.
Maintains 10% headroom below provider limits to avoid 429 errors.
Each LLM endpoint gets its own rate limiter instance configured
with that endpoint's specific limits from provider documentation.
"""
def __init__(
self,
endpoint_id: str,
rpm_limit: int = 10000,
tpm_limit: int = 2000000,
rps_limit: int = 500,
concurrent_limit: int = 200,
):
self.endpoint_id = endpoint_id
self.rpm_limit = rpm_limit
self.tpm_limit = tpm_limit
self.rps_limit = rps_limit
self.concurrent_limit = concurrent_limit
# Effective limits with headroom
self.effective_rpm = int(rpm_limit * (1 - HEADROOM_FRACTION))
self.effective_tpm = int(tpm_limit * (1 - HEADROOM_FRACTION))
self.effective_rps = int(rps_limit * (1 - HEADROOM_FRACTION))
self.effective_concurrent = int(concurrent_limit * (1 - HEADROOM_FRACTION))
# Sliding windows: deque of (timestamp, token_count) tuples
self._rpm_window: Deque[float] = deque() # 60s window
self._tpm_window: Deque[tuple[float, int]] = deque() # 60s window
self._rps_window: Deque[float] = deque() # 1s window
# Concurrent request counter
self._concurrent: int = 0
# Thread safety
self._lock = threading.Lock()
def can_accept(self, estimated_tokens: int = 1000) -> bool:
"""Check if the endpoint can accept a new request.
Args:
estimated_tokens: Estimated total tokens (prompt + completion)
Returns:
True if all rate limits have sufficient headroom.
"""
with self._lock:
now = time.monotonic()
self._cleanup_windows(now)
# Check RPM
if len(self._rpm_window) >= self.effective_rpm:
logger.debug(f"{self.endpoint_id}: RPM limit reached ({len(self._rpm_window)}/{self.effective_rpm})")
return False
# Check TPM
current_tpm = sum(tokens for _, tokens in self._tpm_window)
if current_tpm + estimated_tokens > self.effective_tpm:
logger.debug(f"{self.endpoint_id}: TPM limit reached ({current_tpm}/{self.effective_tpm})")
return False
# Check RPS
if len(self._rps_window) >= self.effective_rps:
logger.debug(f"{self.endpoint_id}: RPS limit reached ({len(self._rps_window)}/{self.effective_rps})")
return False
# Check concurrent
if self._concurrent >= self.effective_concurrent:
logger.debug(f"{self.endpoint_id}: Concurrent limit reached ({self._concurrent}/{self.effective_concurrent})")
return False
return True
def record_request(self, estimated_tokens: int = 1000) -> None:
"""Record an outgoing request against all rate limit windows.
Called when a request is dispatched to the provider.
Must be paired with record_completion() when the request finishes.
"""
with self._lock:
now = time.monotonic()
self._rpm_window.append(now)
self._tpm_window.append((now, estimated_tokens))
self._rps_window.append(now)
self._concurrent += 1
def record_completion(self, actual_tokens: int = 0) -> None:
"""Record request completion, decrement concurrent counter.
Args:
actual_tokens: Actual tokens used (for adjusting TPM tracking)
"""
with self._lock:
self._concurrent = max(0, self._concurrent - 1)
def headroom_pct(self) -> Dict[str, float]:
"""Return remaining headroom percentage for each limit dimension.
Returns:
Dict with rpm, tpm, rps, concurrent headroom as 0.0-1.0 floats.
"""
with self._lock:
now = time.monotonic()
self._cleanup_windows(now)
current_tpm = sum(tokens for _, tokens in self._tpm_window)
return {
"rpm": max(0.0, 1.0 - len(self._rpm_window) / self.rpm_limit) if self.rpm_limit > 0 else 0.0,
"tpm": max(0.0, 1.0 - current_tpm / self.tpm_limit) if self.tpm_limit > 0 else 0.0,
"rps": max(0.0, 1.0 - len(self._rps_window) / self.rps_limit) if self.rps_limit > 0 else 0.0,
"concurrent": max(0.0, 1.0 - self._concurrent / self.concurrent_limit) if self.concurrent_limit > 0 else 0.0,
}
def _cleanup_windows(self, now: float) -> None:
"""Remove expired entries from sliding windows."""
# RPM window: 60 seconds
cutoff_60s = now - 60.0
while self._rpm_window and self._rpm_window[0] < cutoff_60s:
self._rpm_window.popleft()
# TPM window: 60 seconds
while self._tpm_window and self._tpm_window[0][0] < cutoff_60s:
self._tpm_window.popleft()
# RPS window: 1 second
cutoff_1s = now - 1.0
while self._rps_window and self._rps_window[0] < cutoff_1s:
self._rps_window.popleft()Provider rate limit responses (429s) are expensive: they waste a network round-trip, count against your error budget, and can trigger circuit breakers. By proactively stopping at 90% utilization, we trade 10% throughput for dramatically fewer 429 errors. In practice, this headroom absorbs traffic bursts and reduces 429 error rates by 95%+.
The central LLMGateway class orchestrates the full request lifecycle: semantic cache check, endpoint ranking, circuit breaker validation, rate limit enforcement, SLA timeout, and multi-endpoint fallback.
import asyncio
import time
import logging
from typing import Optional, Dict
from gateway.schemas import LLMRequest, LLMResponse
from gateway.router import SmartRouter, EndpointState
from gateway.circuit_breaker import EndpointCircuitBreaker
from gateway.rate_limiter import SlidingWindowRateLimiter
from gateway.cache import SemanticCache
from gateway.adapters import get_adapter
from gateway.metrics import MetricsCollector
logger = logging.getLogger(__name__)
class LLMGateway:
"""Central request handler for the LLM Gateway.
Request lifecycle:
1. Check semantic cache → return cached response if hit
2. Get ranked endpoints from SmartRouter
3. For each endpoint (in score order):
a. Check circuit breaker → skip if open
b. Check rate limiter → skip if exhausted
c. Send request with SLA timeout via asyncio.wait_for
d. On success → record metrics, update state, cache response
e. On failure → record failure, try next endpoint
4. If all endpoints fail → return error response
"""
def __init__(
self,
router: SmartRouter,
cache: SemanticCache,
circuit_breakers: Dict[str, EndpointCircuitBreaker],
rate_limiters: Dict[str, SlidingWindowRateLimiter],
metrics: MetricsCollector,
):
self.router = router
self.cache = cache
self.circuit_breakers = circuit_breakers
self.rate_limiters = rate_limiters
self.metrics = metrics
async def handle(self, request: LLMRequest) -> LLMResponse:
"""Handle an LLM request with full retry and fallback logic.
Args:
request: Unified LLM request from internal service
Returns:
LLMResponse with provider metadata, cost, and latency
"""
start_time = time.monotonic()
# ── Step 1: Check Semantic Cache ──
cached_response = await self.cache.get(request)
if cached_response:
cached_response.latency_ms = (time.monotonic() - start_time) * 1000
self.metrics.record_cache_hit(request.service_id)
logger.info(f"Cache HIT for request={request.request_id}")
return cached_response
self.metrics.record_cache_miss(request.service_id)
# ── Step 2: Get Ranked Endpoints ──
# Try primary model first, then fallbacks
models_to_try = [request.model] + request.fallback_models
last_error: Optional[Exception] = None
attempts = 0
for model in models_to_try:
endpoints = self.router.route(
model=model,
sla_ms=request.sla_ms,
preferred_provider=request.preferred_provider,
estimated_tokens=request.max_tokens,
)
if not endpoints:
logger.warning(f"No endpoints available for model={model}")
continue
# ── Step 3: Try Endpoints in Score Order ──
for endpoint in endpoints:
attempts += 1
ep_id = endpoint.endpoint_id
# Step 3a: Check Circuit Breaker
cb = self.circuit_breakers.get(ep_id)
if cb and not cb.can_execute():
logger.debug(f"Skipping {ep_id}: circuit breaker open")
continue
# Step 3b: Check Rate Limiter
rl = self.rate_limiters.get(ep_id)
if rl and not rl.can_accept(estimated_tokens=request.max_tokens):
logger.debug(f"Skipping {ep_id}: rate limit exhausted")
continue
# Record rate limit usage
if rl:
rl.record_request(estimated_tokens=request.max_tokens)
try:
# Step 3c: Send Request with SLA Timeout
remaining_sla_ms = request.sla_ms - (time.monotonic() - start_time) * 1000
if remaining_sla_ms <= 0:
logger.warning(f"SLA budget exhausted before attempting {ep_id}")
break
timeout_sec = remaining_sla_ms / 1000.0
adapter = get_adapter(endpoint.provider)
response = await asyncio.wait_for(
adapter.send(request, endpoint),
timeout=timeout_sec,
)
# Step 3d: Success — record metrics
latency_ms = (time.monotonic() - start_time) * 1000
response.latency_ms = latency_ms
response.attempts = attempts
response.fallback_used = (model != request.model)
# Update circuit breaker
if cb:
cb.record_success(latency_ms=latency_ms)
# Release rate limiter slot
if rl:
actual_tokens = response.usage.get("total_tokens", 0)
rl.record_completion(actual_tokens=actual_tokens)
# Update router state
self.router.update_endpoint(
ep_id,
avg_latency_ms=latency_ms,
last_used=time.time(),
success_rate=self._calc_success_rate(ep_id),
)
# Cache the response (if eligible)
await self.cache.set(request, response)
# Record metrics
self.metrics.record_request(
service_id=request.service_id,
endpoint_id=ep_id,
model=model,
latency_ms=latency_ms,
cost_usd=response.cost_usd,
success=True,
)
logger.info(
f"Request {request.request_id} served by {ep_id} "
f"in {latency_ms:.1f}ms (attempts={attempts})"
)
return response
except asyncio.TimeoutError:
# Step 3e: SLA timeout — try next endpoint
last_error = asyncio.TimeoutError(
f"Timeout after {remaining_sla_ms:.0f}ms on {ep_id}"
)
logger.warning(f"Timeout on {ep_id}: {remaining_sla_ms:.0f}ms")
if cb:
cb.record_failure(error=last_error)
if rl:
rl.record_completion()
except Exception as e:
# Step 3e: Provider error — try next endpoint
last_error = e
is_rate_limit = "429" in str(e) or "rate_limit" in str(e).lower()
logger.warning(f"Error on {ep_id}: {e}")
if cb:
cb.record_failure(error=e, is_rate_limit=is_rate_limit)
if rl:
rl.record_completion()
self.metrics.record_request(
service_id=request.service_id,
endpoint_id=ep_id,
model=model,
latency_ms=(time.monotonic() - start_time) * 1000,
cost_usd=0,
success=False,
)
# ── Step 4: All Endpoints Failed ──
latency_ms = (time.monotonic() - start_time) * 1000
logger.error(
f"All endpoints failed for request={request.request_id} "
f"after {attempts} attempts in {latency_ms:.1f}ms"
)
self.metrics.record_total_failure(request.service_id)
return LLMResponse(
request_id=request.request_id,
provider="none",
endpoint="none",
model=request.model,
content=f"Error: All endpoints unavailable. Last error: {last_error}",
latency_ms=latency_ms,
attempts=attempts,
)
def _calc_success_rate(self, endpoint_id: str) -> float:
"""Calculate rolling success rate from metrics."""
stats = self.metrics.get_endpoint_stats(endpoint_id, window_sec=300)
if stats["total"] == 0:
return 1.0
return stats["successes"] / stats["total"]The semantic cache uses Redis to store LLM responses keyed by a SHA-256 hash of the request parameters. Only temperature=0 requests are cached (deterministic outputs). Cache hits return in under 5ms vs. 500ms+ for provider calls, achieving 30-40% hit rates for repetitive enterprise workloads.
import hashlib
import json
import logging
from typing import Optional
import redis.asyncio as redis
from gateway.schemas import LLMRequest, LLMResponse
logger = logging.getLogger(__name__)
DEFAULT_TTL_SECONDS = 3600 # 1 hour
class SemanticCache:
"""Redis-backed semantic cache for LLM responses.
Cache key = SHA256(model + messages + temperature + max_tokens)
Rules:
- Only cache temperature=0 requests (deterministic output)
- TTL: 1 hour (configurable per model)
- Returns cached=True flag so callers know it was a cache hit
- Cache misses add < 1ms overhead (single Redis GET)
Cache hit rates in production:
- Customer support bots: ~45% (many repeated questions)
- Code generation: ~15% (unique prompts)
- Search augmentation: ~35% (similar queries)
- Average across all services: 30-40%
"""
def __init__(
self,
redis_client: redis.Redis,
ttl_seconds: int = DEFAULT_TTL_SECONDS,
enabled: bool = True,
max_tokens_for_cache: int = 4096,
):
self.redis = redis_client
self.ttl_seconds = ttl_seconds
self.enabled = enabled
self.max_tokens_for_cache = max_tokens_for_cache
def _cache_key(self, request: LLMRequest) -> str:
"""Generate deterministic cache key from request parameters.
Key components:
- model: Different models produce different outputs
- messages: The actual conversation (content + roles)
- temperature: Only 0 is cached, but included for safety
- max_tokens: Affects output length/truncation
"""
key_data = {
"model": request.model,
"messages": [
{"role": m.role, "content": m.content}
for m in request.messages
],
"temperature": request.temperature,
"max_tokens": request.max_tokens,
}
key_json = json.dumps(key_data, sort_keys=True, ensure_ascii=True)
key_hash = hashlib.sha256(key_json.encode()).hexdigest()
return f"llm_cache:{key_hash}"
def _is_cacheable(self, request: LLMRequest) -> bool:
"""Determine if a request is eligible for caching.
Only cache when:
1. Caching is enabled
2. Temperature is exactly 0 (deterministic)
3. Not a streaming request
4. Max tokens is within cache limit
"""
if not self.enabled:
return False
if request.temperature != 0.0:
return False
if request.stream:
return False
if request.max_tokens > self.max_tokens_for_cache:
return False
return True
async def get(self, request: LLMRequest) -> Optional[LLMResponse]:
"""Look up cached response for this request.
Returns:
LLMResponse with cached=True if found, None otherwise.
"""
if not self._is_cacheable(request):
return None
try:
key = self._cache_key(request)
cached_data = await self.redis.get(key)
if cached_data is None:
return None
data = json.loads(cached_data)
response = LLMResponse(
request_id=request.request_id,
provider=data["provider"],
endpoint=data["endpoint"],
model=data["model"],
content=data["content"],
usage=data["usage"],
latency_ms=0, # Will be set by caller
cost_usd=0.0, # Cached = free
cached=True,
)
logger.debug(f"Cache HIT: key={key[:16]}...")
return response
except Exception as e:
# Cache failures should never block requests
logger.warning(f"Cache GET error: {e}")
return None
async def set(self, request: LLMRequest, response: LLMResponse) -> None:
"""Cache a response for future identical requests.
Only caches if the request is eligible (temperature=0, non-streaming).
Cache failures are logged but never raise exceptions.
"""
if not self._is_cacheable(request):
return
try:
key = self._cache_key(request)
cache_data = json.dumps({
"provider": response.provider,
"endpoint": response.endpoint,
"model": response.model,
"content": response.content,
"usage": response.usage,
})
await self.redis.setex(key, self.ttl_seconds, cache_data)
logger.debug(f"Cache SET: key={key[:16]}... ttl={self.ttl_seconds}s")
except Exception as e:
# Cache failures should never block requests
logger.warning(f"Cache SET error: {e}")Each LLM provider has a different API format, authentication method, and response structure. The Adapter Pattern provides a uniform interface so the gateway core never deals with provider-specific details. Adding a new provider requires only implementing the abstract base class.
from abc import ABC, abstractmethod
from typing import Dict, Any
import aiohttp
from gateway.schemas import LLMRequest, LLMResponse
from gateway.router import EndpointState
class LLMProviderAdapter(ABC):
"""Abstract base class for LLM provider adapters.
Each adapter translates between the gateway's unified format
and the provider's native API format. Responsible for:
- Building provider-specific HTTP requests
- Parsing provider-specific responses
- Calculating cost based on token usage
- Handling provider-specific error codes
"""
def __init__(self, api_key: str, session: aiohttp.ClientSession):
self.api_key = api_key
self.session = session
@abstractmethod
def build_request(self, request: LLMRequest, endpoint: EndpointState) -> Dict[str, Any]:
"""Transform unified request into provider-specific format."""
...
@abstractmethod
def parse_response(self, raw_response: Dict[str, Any], request: LLMRequest,
endpoint: EndpointState) -> LLMResponse:
"""Transform provider response into unified format."""
...
@abstractmethod
def calculate_cost(self, usage: Dict[str, int], endpoint: EndpointState) -> float:
"""Calculate cost in USD based on token usage."""
...
async def send(self, request: LLMRequest, endpoint: EndpointState) -> LLMResponse:
"""Send request to provider and return unified response."""
provider_request = self.build_request(request, endpoint)
async with self.session.post(
provider_request["url"],
headers=provider_request["headers"],
json=provider_request["body"],
) as resp:
if resp.status == 429:
raise RateLimitError(f"429 Rate limit from {endpoint.endpoint_id}")
if resp.status >= 400:
body = await resp.text()
raise ProviderError(f"HTTP {resp.status} from {endpoint.endpoint_id}: {body}")
raw = await resp.json()
return self.parse_response(raw, request, endpoint)
class RateLimitError(Exception):
"""Raised when provider returns HTTP 429."""
pass
class ProviderError(Exception):
"""Raised when provider returns a non-429 error."""
passfrom typing import Dict, Any
from gateway.adapters.base import LLMProviderAdapter
from gateway.schemas import LLMRequest, LLMResponse
from gateway.router import EndpointState
class AnthropicAdapter(LLMProviderAdapter):
"""Adapter for Anthropic's Messages API.
Translates OpenAI-style messages format to Anthropic's format:
- Separates system message from conversation
- Uses 'x-api-key' header instead of 'Authorization: Bearer'
- Maps response format: content[0].text → content
- Handles Anthropic-specific usage fields
"""
API_VERSION = "2024-01-01"
def build_request(self, request: LLMRequest, endpoint: EndpointState) -> Dict[str, Any]:
"""Transform unified request to Anthropic Messages API format."""
# Separate system message from conversation messages
system_msg = None
messages = []
for msg in request.messages:
if msg.role == "system":
system_msg = msg.content
else:
messages.append({"role": msg.role, "content": msg.content})
body = {
"model": request.model,
"messages": messages,
"max_tokens": request.max_tokens,
"temperature": request.temperature,
}
if system_msg:
body["system"] = system_msg
return {
"url": f"{endpoint.base_url}/v1/messages",
"headers": {
"x-api-key": self.api_key,
"anthropic-version": self.API_VERSION,
"content-type": "application/json",
},
"body": body,
}
def parse_response(self, raw: Dict[str, Any], request: LLMRequest,
endpoint: EndpointState) -> LLMResponse:
"""Transform Anthropic response to unified format."""
content = raw["content"][0]["text"] if raw.get("content") else ""
usage = {
"prompt_tokens": raw.get("usage", {}).get("input_tokens", 0),
"completion_tokens": raw.get("usage", {}).get("output_tokens", 0),
"total_tokens": (
raw.get("usage", {}).get("input_tokens", 0) +
raw.get("usage", {}).get("output_tokens", 0)
),
}
return LLMResponse(
request_id=request.request_id,
provider="anthropic",
endpoint=endpoint.endpoint_id,
model=raw.get("model", request.model),
content=content,
usage=usage,
latency_ms=0, # Set by caller
cost_usd=self.calculate_cost(usage, endpoint),
)
def calculate_cost(self, usage: Dict[str, int], endpoint: EndpointState) -> float:
"""Calculate cost using Anthropic's pricing."""
input_cost = (usage.get("prompt_tokens", 0) / 1000) * endpoint.cost_per_1k_input
output_cost = (usage.get("completion_tokens", 0) / 1000) * endpoint.cost_per_1k_output
return round(input_cost + output_cost, 6)from typing import Dict, Any
from gateway.adapters.base import LLMProviderAdapter
from gateway.schemas import LLMRequest, LLMResponse
from gateway.router import EndpointState
class AzureOpenAIAdapter(LLMProviderAdapter):
"""Adapter for Azure OpenAI Service endpoints.
Key differences from OpenAI direct:
- URL includes deployment name: /deployments/{model}/chat/completions
- Uses 'api-key' header instead of 'Authorization: Bearer'
- Requires api-version query parameter
- Each Azure region is a separate endpoint with its own rate limits
"""
API_VERSION = "2024-02-01"
def build_request(self, request: LLMRequest, endpoint: EndpointState) -> Dict[str, Any]:
"""Transform unified request to Azure OpenAI format."""
messages = [{"role": m.role, "content": m.content} for m in request.messages]
# Azure uses deployment name in URL path
deployment = request.model.replace(".", "")
url = (
f"{endpoint.base_url}/openai/deployments/{deployment}"
f"/chat/completions?api-version={self.API_VERSION}"
)
return {
"url": url,
"headers": {
"api-key": self.api_key,
"content-type": "application/json",
},
"body": {
"messages": messages,
"max_tokens": request.max_tokens,
"temperature": request.temperature,
},
}
def parse_response(self, raw: Dict[str, Any], request: LLMRequest,
endpoint: EndpointState) -> LLMResponse:
"""Transform Azure OpenAI response to unified format."""
choice = raw.get("choices", [{}])[0]
content = choice.get("message", {}).get("content", "")
raw_usage = raw.get("usage", {})
usage = {
"prompt_tokens": raw_usage.get("prompt_tokens", 0),
"completion_tokens": raw_usage.get("completion_tokens", 0),
"total_tokens": raw_usage.get("total_tokens", 0),
}
return LLMResponse(
request_id=request.request_id,
provider="azure-openai",
endpoint=endpoint.endpoint_id,
model=raw.get("model", request.model),
content=content,
usage=usage,
latency_ms=0,
cost_usd=self.calculate_cost(usage, endpoint),
)
def calculate_cost(self, usage: Dict[str, int], endpoint: EndpointState) -> float:
"""Calculate cost using Azure OpenAI pricing (same as OpenAI)."""
input_cost = (usage.get("prompt_tokens", 0) / 1000) * endpoint.cost_per_1k_input
output_cost = (usage.get("completion_tokens", 0) / 1000) * endpoint.cost_per_1k_output
return round(input_cost + output_cost, 6)
def get_adapter(provider: str) -> LLMProviderAdapter:
"""Factory function to get the appropriate adapter for a provider."""
adapters = {
"openai": OpenAIAdapter,
"azure-openai": AzureOpenAIAdapter,
"anthropic": AnthropicAdapter,
"google": GoogleGeminiAdapter,
}
adapter_class = adapters.get(provider)
if not adapter_class:
raise ValueError(f"Unknown provider: {provider}")
return adapter_class()When the gateway is under load, requests are prioritized by their SLA tier. CRITICAL requests (real-time chat) are never queued — they either get served immediately or fail fast. Lower-priority requests are queued in Kafka partitions with different consumer priorities.
import asyncio
import time
from enum import IntEnum
from dataclasses import dataclass, field
from typing import Optional, List
import heapq
import logging
logger = logging.getLogger(__name__)
class PriorityLevel(IntEnum):
"""Lower number = higher priority (for min-heap)."""
CRITICAL = 0 # SLA <200ms — never queued, fail fast
HIGH = 1 # SLA <1s — minimal queueing
MEDIUM = 2 # SLA <5s — can wait in queue
LOW = 3 # SLA <30s — batch processing, longest wait
SLA_DEADLINES = {
PriorityLevel.CRITICAL: 200, # ms
PriorityLevel.HIGH: 1000, # ms
PriorityLevel.MEDIUM: 5000, # ms
PriorityLevel.LOW: 30000, # ms
}
@dataclass(order=True)
class PrioritizedRequest:
"""Wrapper for heap-based priority queue ordering."""
priority: int # PriorityLevel value (0-3)
enqueued_at: float # time.monotonic() timestamp
request_id: str = field(compare=False) # For dedup and logging
request: object = field(compare=False) # The actual LLMRequest
sla_deadline_ms: int = field(compare=False, default=5000)
def is_expired(self) -> bool:
"""Check if this request has exceeded its SLA deadline."""
elapsed_ms = (time.monotonic() - self.enqueued_at) * 1000
return elapsed_ms > self.sla_deadline_ms
class SLAPriorityQueue:
"""Priority queue that respects SLA deadlines.
Behavior by priority:
CRITICAL: Bypass queue entirely. If no endpoint available, fail immediately.
HIGH: Queue for max 500ms. Dequeue first when capacity frees up.
MEDIUM: Queue for max 4s. Standard processing.
LOW: Queue for max 25s. Processed when higher priorities are clear.
Expired requests are dropped when dequeued (not before, to avoid O(n) scans).
"""
def __init__(self, max_queue_size: int = 10000):
self._heap: List[PrioritizedRequest] = []
self._max_size = max_queue_size
self._lock = asyncio.Lock()
self._not_empty = asyncio.Event()
self._dropped_count = 0
async def enqueue(self, request, priority: PriorityLevel) -> bool:
"""Add request to priority queue.
Args:
request: LLMRequest to enqueue
priority: SLA-based priority level
Returns:
True if enqueued, False if queue is full or CRITICAL priority
"""
# CRITICAL requests never queue — they must be served immediately
if priority == PriorityLevel.CRITICAL:
logger.debug(f"CRITICAL request {request.request_id} — bypassing queue")
return False # Signal caller to handle immediately
async with self._lock:
if len(self._heap) >= self._max_size:
# Queue full — drop lowest priority request
if self._heap and self._heap[-1].priority > priority.value:
dropped = heapq.heappushpop(
self._heap,
PrioritizedRequest(
priority=priority.value,
enqueued_at=time.monotonic(),
request_id=request.request_id,
request=request,
sla_deadline_ms=SLA_DEADLINES[priority],
)
)
self._dropped_count += 1
logger.warning(f"Queue full: dropped {dropped.request_id} (pri={dropped.priority})")
return True
else:
logger.warning(f"Queue full: rejecting {request.request_id}")
return False
heapq.heappush(
self._heap,
PrioritizedRequest(
priority=priority.value,
enqueued_at=time.monotonic(),
request_id=request.request_id,
request=request,
sla_deadline_ms=SLA_DEADLINES[priority],
)
)
self._not_empty.set()
return True
async def dequeue(self, timeout_sec: float = 1.0) -> Optional[PrioritizedRequest]:
"""Dequeue the highest-priority non-expired request.
Skips expired requests (they've already breached SLA).
"""
try:
await asyncio.wait_for(self._not_empty.wait(), timeout=timeout_sec)
except asyncio.TimeoutError:
return None
async with self._lock:
while self._heap:
item = heapq.heappop(self._heap)
if not item.is_expired():
if not self._heap:
self._not_empty.clear()
return item
else:
self._dropped_count += 1
logger.debug(f"Dropping expired request {item.request_id}")
self._not_empty.clear()
return None
@property
def size(self) -> int:
return len(self._heap)
@property
def dropped(self) -> int:
return self._dropped_countWith a 200ms SLA, queueing is pointless — the overhead of enqueue + dequeue + processing would exceed the deadline. CRITICAL requests either get an immediately available endpoint or fail fast with a clear error, allowing the caller to implement their own degraded experience (e.g., showing cached results instead of live AI responses).
Key performance indicators for the LLM Gateway in production, measured across all endpoints and internal service consumers.
| Metric | Type | Labels | Description |
|---|---|---|---|
| llm_request_duration_ms | Histogram | service, endpoint, model | End-to-end request latency |
| llm_request_total | Counter | service, endpoint, status | Total requests (success/failure) |
| llm_cache_hit_total | Counter | service | Semantic cache hits |
| llm_cache_miss_total | Counter | service | Semantic cache misses |
| llm_circuit_breaker_state | Gauge | endpoint | 0=closed, 1=open, 2=half_open |
| llm_rate_limit_headroom | Gauge | endpoint, dimension | RPM/TPM/RPS headroom (0-1) |
| llm_cost_usd_total | Counter | service, provider, model | Accumulated cost in USD |
| llm_fallback_total | Counter | service, from_model, to_model | Fallback events |
| llm_queue_depth | Gauge | priority | Current queue depth per priority |
| llm_endpoint_score | Gauge | endpoint | Current routing score (0-1) |
| Decision | Chosen | Alternative | Rationale |
|---|---|---|---|
| Routing Algorithm | Weighted Scoring | Round-robin, Random, Least-connections | Multi-dimensional scoring (health, latency, capacity, cost) adapts to real-time conditions. Round-robin ignores endpoint health; random ignores capacity. |
| Rate Limiting | Sliding Window | Fixed Window, Token Bucket, Leaky Bucket | Sliding window avoids the boundary burst problem of fixed windows. More accurate than token bucket for multi-dimensional limits (RPM + TPM + RPS). |
| Failure Handling | Circuit Breaker + Retry | Retry-only, Bulkhead | Circuit breaker prevents thundering herd on failing endpoints. Retry-only wastes capacity when an endpoint is truly down. Breaker gives endpoints time to recover. |
| Caching Strategy | Semantic (hash-based) | Exact match, Embedding similarity | SHA-256 hash is fast (<0.1ms) and deterministic. Embedding similarity adds 50ms+ overhead and requires vector DB. Hash-based captures 90%+ of repeated queries. |
| Request Format | OpenAI-compatible | Custom format, gRPC | OpenAI format is the de facto standard — engineers already know it. Custom format adds learning curve. Adapters handle provider-specific translation. |
| Queue Priority | SLA-based | FIFO, Fair queuing | SLA-based ensures real-time services (chat) are never starved by batch jobs. FIFO treats all requests equally, which violates SLA contracts. Fair queuing is more complex without clear benefit. |
| State Storage | Redis (shared state) | In-process, etcd, ZooKeeper | Redis provides sub-ms reads for circuit breaker/rate limiter state shared across gateway instances. In-process state doesn't work with horizontal scaling. etcd/ZooKeeper are over-engineered for this use case. |
| Provider Abstraction | Adapter Pattern | Direct integration, SDK wrappers | Clean separation of concerns. Adding a new provider = one new adapter class. No changes to routing, caching, or rate limiting code. |
Detection: Circuit breaker trips after 5 consecutive failures (typically within 2-3 seconds).
Response: Smart Router immediately disqualifies the endpoint (circuit=OPEN). Scoring algorithm routes to Azure West US or Azure EU West with no configuration change. Traffic shifts in under 100ms.
Recovery: After 30s cooldown, circuit transitions to HALF_OPEN. One probe request tests the endpoint. If it succeeds 3 times consecutively, the circuit closes and the endpoint rejoins the routing pool at reduced score (fresh metrics).
Scenario: OpenAI returns 429 Too Many Requests.
Response: Circuit breaker immediately opens with 3x cooldown (90 seconds). The current request fails over to the next scored endpoint (e.g., Azure OpenAI with the same model). Rate limiter headroom for the throttled endpoint drops to 0%, ensuring no new requests are sent during cooldown. The Retry-After header value from the 429 response is used to set the exact cooldown duration if available.
Detection: asyncio.wait_for() raises TimeoutError after SLA deadline.
Response: The slow request is abandoned (but the provider connection is closed to free resources). The gateway immediately tries the next ranked endpoint with the remaining SLA budget. If no SLA budget remains, the request fails with a clear timeout error.
Prevention: Slow call detection in the circuit breaker tracks P99 latency. If >50% of calls are slow, the circuit trips proactively, routing away before SLA breaches accumulate.
Detection: Redis stores in-flight request IDs with a short TTL (5 minutes).
Response: If a request_id is already in-flight, the gateway returns a 409 Conflict. If the original request has completed and is cached, the cache hit serves the response. This prevents double-billing from provider APIs and ensures idempotency.
Trade-off: Adds ~0.5ms per request for the Redis check, but prevents expensive duplicate LLM calls.
Detection: The exponential moving average (EMA) latency tracker picks up the trend within 5-10 requests. P99 latency spikes above SLA thresholds.
Response: The Smart Router's latency score for this endpoint drops, naturally deprioritizing it. CRITICAL requests (SLA=200ms) are disqualified immediately (P99 > SLA). HIGH/MEDIUM requests may still route there but with a lower score.
Key insight: This is a graceful degradation, not a hard cutoff. The endpoint isn't "down" — it's deprioritized proportionally to its degradation level.
Problem: When Azure East US (handling 40% of traffic) goes down, its traffic shifts to 2-3 other endpoints, potentially overwhelming them.
Mitigation 1: Rate limiters on each endpoint cap the influx regardless of routing decisions.
Mitigation 2: The priority queue absorbs the spike — LOW and MEDIUM requests queue while CRITICAL/HIGH get priority on available capacity.
Mitigation 3: Capacity score (20% of routing weight) naturally load-balances across endpoints. As one endpoint fills, its score drops, pushing traffic to less-loaded endpoints.
Mitigation 4: HALF_OPEN circuit allows controlled probe traffic, preventing a full stampede when the failed endpoint recovers.
The gateway is stateless by design — all state lives in Redis (circuit breakers, rate limiters, cache) and Kafka (priority queues). This allows horizontal scaling by adding more gateway pods in Kubernetes.
apiVersion: apps/v1
kind: Deployment
metadata:
name: llm-gateway
spec:
replicas: 12
strategy:
type: RollingUpdate
rollingUpdate:
maxUnavailable: 1
maxSurge: 2
template:
spec:
containers:
- name: gateway
image: llm-gateway:latest
resources:
requests:
cpu: "2"
memory: "4Gi"
limits:
cpu: "4"
memory: "8Gi"
env:
- name: REDIS_CLUSTER_URL
valueFrom:
secretKeyRef:
name: gateway-secrets
key: redis-url
- name: KAFKA_BROKERS
value: "kafka-0:9092,kafka-1:9092,kafka-2:9092"
readinessProbe:
httpGet:
path: /health
port: 8080
initialDelaySeconds: 5
periodSeconds: 10
livenessProbe:
httpGet:
path: /health
port: 8080
initialDelaySeconds: 15
periodSeconds: 20
topologySpreadConstraints:
- maxSkew: 1
topologyKey: topology.kubernetes.io/zone
whenUnsatisfiable: DoNotSchedule| Component | Configuration | Throughput |
|---|---|---|
| Gateway Pods | 12 pods x 4 CPU cores | ~4,200 RPS per pod |
| Redis Cluster | 6 nodes (3 primary + 3 replica) | 100K+ ops/sec |
| Kafka | 4 priority partitions x 3 brokers | 200K+ msgs/sec |
| PostgreSQL | Primary + 2 read replicas | Audit log writes (async) |
| LLM Endpoints | 3 Azure + 1 OpenAI + 1 Anthropic + 1 Gemini | Combined 60K+ RPM |
Four Kafka partitions per topic, each dedicated to a priority level. Consumer groups process CRITICAL partitions first (though CRITICAL bypasses queuing in practice), then HIGH, MEDIUM, and LOW.
# Kafka topic configuration for priority-based partitioning
TOPIC_CONFIG = {
"topic": "llm-requests",
"partitions": 4,
"replication_factor": 3,
"partition_mapping": {
"critical": 0, # Partition 0 — highest consumer priority
"high": 1, # Partition 1
"medium": 2, # Partition 2
"low": 3, # Partition 3 — lowest consumer priority
},
"consumer_config": {
"max_poll_records": 100,
"fetch_max_wait_ms": 50, # Low latency for high-pri
"session_timeout_ms": 10000,
},
}
# Consumer group processes partitions in priority order:
# 1. Poll partition 0 (CRITICAL) — always first
# 2. Poll partition 1 (HIGH) — if critical is empty
# 3. Poll partition 2 (MEDIUM) — if high is empty
# 4. Poll partition 3 (LOW) — if medium is emptyKubernetes HPA scales gateway pods based on two metrics: (1) average CPU utilization > 60%, and (2) P99 routing latency > 5ms. The second metric is critical — it catches the case where CPU looks fine but the event loop is saturated with async I/O waits. Min replicas: 6 (for zone redundancy). Max replicas: 24.
Prepared Q&A covering the most common system design interview questions about LLM infrastructure at enterprise scale.
"The Smart Router uses weighted scoring across four dimensions: Health (40%), Latency (30%), Capacity (20%), Cost (10%). Each endpoint gets a score from 0 to 1. Endpoints are disqualified if they're unhealthy, circuit-open, rate-limited, or can't meet the SLA. The highest-scoring endpoint serves the request, with lower-scored endpoints as automatic fallbacks. The 40% health weight ensures we never route to a degraded endpoint even if it's cheaper or has capacity."
"Retries alone create a thundering herd — if an endpoint is down, every request retries against it, wasting capacity and adding latency. Circuit breakers fail fast: once the breaker trips, requests immediately skip that endpoint. The HALF_OPEN state allows controlled recovery probing. We also handle 429 errors specially — they trigger immediate OPEN with 3x cooldown because rate limits are provider-enforced and retrying is wasteful."
"Rate limiter state lives in Redis, shared across all gateway pods. Each request does a Redis INCR on sliding window counters for RPM, TPM, and RPS. The overhead is ~0.5ms per request (one Redis round-trip). We maintain 10% headroom below provider limits to absorb timing inconsistencies between gateway instances. In the rare case of a Redis outage, gateways fall back to in-process rate limiting with conservative limits."
"Temperature=0 means deterministic output — the same input always produces the same output. Any temperature > 0 introduces randomness, making cached responses semantically wrong. We use SHA-256 hashing of model+messages+temperature+max_tokens as the cache key. This is a content-addressable cache — identical requests always hit the same key. Cache hit rates are 30-40% in production because enterprise workloads have high query repetition (e.g., support bots, code assistance)."
"Failover is automatic and multi-layered:
(1) Same model, different endpoint: If Azure East US fails, the router scores Azure West US and Azure EU West higher. Same model, different region. Failover in <100ms.
(2) Same model, different provider: If all Azure endpoints fail, OpenAI's gpt-4o endpoints are scored. Same model via different provider.
(3) Fallback model: If the primary model is completely unavailable, the request's fallback_models list is tried (e.g., gpt-4o → claude-sonnet-4-20250514 → gemini-pro). The caller specifies acceptable alternatives.
Each failover level adds latency but maintains availability. The SLA timeout ensures we don't spend too long on doomed attempts."
"Each request carries a priority level and SLA deadline. CRITICAL requests (chat, 200ms SLA) bypass queueing entirely — they get immediate routing or fail fast. HIGH requests (search, 1s SLA) get priority in the queue. The Smart Router uses the SLA to disqualify slow endpoints (P99 > SLA). The priority queue drops expired requests on dequeue to avoid processing stale work. This means a batch analytics request (30s SLA) never blocks a real-time chat request (200ms SLA)."
"The gateway is stateless — all state lives in Redis and Kafka. Scaling steps:
(1) Add more gateway pods (currently 12, each handles ~4.2K RPS).
(2) Scale Redis Cluster to more shards (currently 6 nodes, each handles 100K+ ops/sec).
(3) Add Kafka partitions if queue throughput bottlenecks (currently 200K+ msgs/sec).
(4) The real bottleneck is LLM provider rate limits — to scale beyond provider limits, we'd add more provider accounts, negotiate higher limits, or increase cache hit rates."
"Cost optimization is built into the routing algorithm at 10% weight — enough to prefer cheaper endpoints when health and latency are comparable, but not enough to override reliability. Additional strategies:
(1) Caching: 30-40% cache hit rate means 30-40% fewer paid API calls.
(2) Model downsizing: Services can specify fallback to cheaper models (gpt-4o → gpt-4o-mini) for non-critical requests.
(3) Batch coalescing: LOW priority requests can be batched to use batch API pricing (50% cheaper).
(4) Cost dashboards: Per-service cost tracking enables chargeback and identifies services with unexpectedly high costs."
"Redis outage is a graceful degradation, not a total failure:
(1) Cache: All requests become cache misses — latency increases but nothing breaks.
(2) Rate limiting: Falls back to in-process rate limiting with conservative limits (70% of normal). Less accurate across instances but prevents over-quota errors.
(3) Circuit breaker state: In-process circuit breakers continue working per-instance. State diverges across instances but safety is maintained.
(4) Dedup: Duplicate detection is disabled — acceptable for short Redis outages.
The gateway continues serving requests with reduced optimization, not reduced availability."
"Streaming requests (stream=true) bypass the semantic cache since partial responses can't be meaningfully cached. The gateway establishes a Server-Sent Events (SSE) connection to the provider and proxies chunks back to the caller. Rate limiting accounts for the full estimated token count upfront. Circuit breaker monitors the stream — if a stream stalls for >5 seconds, it's treated as a failure. Streaming requests can't fail over mid-stream, so endpoint selection is especially important."
"Each internal service has a per-service quota enforced at the gateway level. This is separate from provider rate limits. Service quotas are configured based on business priority and budget. If a batch analytics service suddenly sends 10x normal traffic, its per-service rate limiter rejects excess requests before they compete with other services for provider capacity. Quota violations trigger alerts to the service owner via the Grafana dashboard."
"Single-provider is a single point of failure. In practice:
(1) Availability: Every major LLM provider has had multi-hour outages. Multi-provider gives us 99.99% availability vs. ~99.9% for any single provider.
(2) Rate limits: Combined rate limits across providers are 3-5x higher than any single provider.
(3) Cost optimization: Different providers have different pricing for different models. Routing optimizes cost without sacrificing quality.
(4) Capability diversity: Some models are better at code (GPT-4o), some at analysis (Claude), some at multilingual tasks (Gemini). Multi-provider lets services pick the best tool.
The Adapter Pattern makes multi-provider nearly zero overhead to maintain."
"Testing is layered:
(1) Unit tests: Each component (router, circuit breaker, rate limiter, cache) has isolated unit tests with mocked dependencies. The scoring algorithm is tested with parameterized inputs covering all disqualifier combinations.
(2) Integration tests: End-to-end tests with mock LLM providers that simulate latency, errors, and rate limits. Tests verify failover chains, circuit breaker transitions, and cache behavior.
(3) Chaos testing: Inject random failures (kill endpoints, introduce latency, simulate 429s) to verify resilience. Run monthly in staging.
(4) Shadow traffic: New routing algorithm changes are tested with shadow traffic (duplicate production requests, compare routing decisions, don't serve shadow responses) before rollout."
"The weighted scoring algorithm with hard disqualifiers. It's the single function that determines where every request goes. The key insight is separating 'can this endpoint serve the request at all?' (disqualifiers) from 'which endpoint is best?' (weighted score). Disqualifiers are boolean — if an endpoint is unhealthy or rate-limited, it doesn't matter how good its latency or cost is. The weights are then tuned for optimization, not correctness. This two-phase approach makes the routing both safe and efficient."
"Adding a new provider requires exactly three steps:
(1) Implement the LLMProviderAdapter interface — build_request(), parse_response(), calculate_cost(). This is typically ~50 lines of code.
(2) Register endpoint(s) in the configuration with model mappings, rate limits, and cost information.
(3) Deploy. The Smart Router, circuit breaker, rate limiter, and cache all work automatically because they operate on the unified schema, not provider-specific formats. Zero changes to existing code."
"Model versioning is handled at the endpoint configuration level. When a provider releases a new model version (e.g., gpt-4o-2024-08-06), we register it as a new endpoint with its own circuit breaker and rate limiter. The old version stays active. Services can pin to specific versions or request the 'latest' alias. We run quality regression tests on the new version with shadow traffic before promoting it to 'latest'. Deprecated versions are drained gradually by lowering their priority_weight over time."