LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

Re: Getting no connection

from [Wensong Zhang] [Permanent Link]
To: a9702466 <a9702466@xxxxxxxxxxxxxxxxx>
Subject: Re: Getting no connection
Cc: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
From: Wensong Zhang <wensong@xxxxxxxxxxxx>
Date: Fri, 17 Dec 1999 01:23:43 +0800 
a9702466 wrote:
> 
> Hi!
> 
> I have troubles getting my LVS running. Following configuration:
>     # IP-Masq
>     /sbin/ipchains -M -S 7200 10 160
>     /sbin/ipchains -P forward DENY
>     /sbin/ipchains -A forward -s 10.0.0.0/24 -j MASQ
>     # Virtual Server
>     /sbin/modprobe ip_vs_dd
>     /sbin/ipvsadm -A -t LVD:80 -s rr
>     /sbin/ipvsadm -a -t LVD:80 -r 10.0.0.1 -m
>     /sbin/ipvsadm -a -t LVD:80 -r 10.0.0.3 -m
> 
> The "10.0.0.1"-computer is the LVD. Browsing "http://10.0.0.3"; works
> fine. Browsing "http://LVD"; works only for redirects to the
> "10.0.0.1"-computer. Every redirect to the "10.0.0.3"-computer gives no
> reaction in the browser till timeout.
>     [root@local /sbin]# ipvsadm -l
>     IP Virtual Server version 0.8.3 (size=4096)
>     Protocol LocalAddress:Port Scheduler Flags
>           -> RemoteAddress:Port    Forward Weight ActiveConn InActConn
>     TCP LVD:80 rr
>           -> 10.0.0.3:80           Masq    1      0          2
>           -> 10.0.0.1:80           Local   1      1          0
> All to "10.0.0.3" redirected requests are inactive.
> 
> Changing "Chain forward (policy DENY)" to "Chain forward (policy
> ACCEPT)" of ipchains doesn't change anything. The "10.0.0.3"-computer is
> non-linux; might this be the problem? I've just tested it from inside
> the "10.0.0.x"-network; is that a problem?
> 

Yes, it is. Please get a client outside of the cluster to test it.
Because response packets from 10.0.0.3 to the client need go through
the LVS box, the LVS box can rewrite the source address of packets
back to your LVD address. If your client and the real server is in
short cuicurt, then connection will be broken.

Wensong


> Everything seems to be configured fine, but all redirects to computers
> expect the LVD doesn't work.
> 
> Stephan
> 
> ----------------------------------------------------------------------
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> To unsubscribe, e-mail: lvs-users-unsubscribe@xxxxxxxxxxxxxxxxxxxxxx
> For additional commands, e-mail: lvs-users-help@xxxxxxxxxxxxxxxxxxxxxx

----------------------------------------------------------------------
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe, e-mail: lvs-users-unsubscribe@xxxxxxxxxxxxxxxxxxxxxx
For additional commands, e-mail: lvs-users-help@xxxxxxxxxxxxxxxxxxxxxx
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: proxy farm, Michael Sparks
Next by Date:  Re: Newbie Advice, Wensong Zhang
Previous by Thread:  Getting no connection, a9702466
Next by Thread:  Filesystems and VFS, zas
Indexes:  [Date] [Thread] [Top] [All Lists]