|
I'm a little confused at this question. What is a demasquerade rule? or did
you mean masq rule? Actually, I have a rule that says -s 192.168.0.0/16 -d
192.168.0.0/16 -j ACCEPT
But if there's already a masq table entry for TCP 192.168.1.x:* ->
192.168.10.x:80 , then anything from TCP port 80 of 192.168.10.x to
192.168.1.x, should get "demasqueraded", correct?
-----Original Message-----
From: mack@xxxxxxxxxxxx [mailto:mack@xxxxxxxxxxxx]On Behalf Of Joseph
Mack
Sent: Thursday, June 15, 2000 11:24 AM
To: Clint Byrum
Cc: Joseph Mack; Lvs-Users
Subject: Re: LVS working great.. but...
Clint Byrum wrote:
>
> The director is the default route for all of the mentioned machines. It,
of
> course, has a route to each of the internal subnets, so things get routed
as
> they should. It just seems like there's a tiny piece missing that doesn't
> demasquerade the replies from the load-balanced server, but instead, just
> routes it. So, to answer succinctly,
>
> 1. no
>
> 2. yes
OK one more then. Do you have a demasquerade rule with
-s realservers -d internalclients?
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
