RE: ip_masq_ftp 2.2.19

To:	'Julian Anastasov' <ja@xxxxxx>
Subject:	RE: ip_masq_ftp 2.2.19
Cc:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
From:	Jeremy Kusnetz <JKusnetz@xxxxxxxx>
Date:	Mon, 11 Jun 2001 15:48:27 -0400

Internet
-----------------
|Good FTP Client|-----------------|
-----------------                 |
                                  |
           | ------------------|  |
----------------------------------------------
Work Lan   |       | LVS Lan      |
----------------   |        ---------------
| Work Firewall|   |        |LVS/IP_MASQ  |
----------------   |        | VIP         |
           |       |        ---------------
-----------------  |              |
| Bad FTP client|  |       ------------------
-----------------  |       | RIP, FTP Server|--
                           ------------------  |
                              |----------------|
Does this make any sense?

The Good FTP client is any FTP client out there on the internet.  Both
Active and Passive
work.

The Bad FTP client are FTP clients sitting behind a work firewall (NOT the
LVS firewall).
Active ftp times out and Passive ftp gets Connection Refused.

The Bad FTP client worked fine with both Active and Passive FTP with Kernel
2.2.16 and LVS 0.9.15, so it seems to be some sort of interaction with
ip_masq_ftp and the work firewall?

I would leave everything with 2.2.16, but I need to upgrade for other
non-LVS related reasons (ie NFS, client loses connection to NFS server, NFS
server crashes.  Kind of takes away any advantage of having clusters/LVS..
:-) ).

-----Original Message-----
From: Julian Anastasov [mailto:ja@xxxxxx]
Sent: Monday, June 11, 2001 5:48 PM
To: Jeremy Kusnetz
Cc: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: Re: ip_masq_ftp 2.2.19



        Hello,

On Mon, 11 Jun 2001, Jeremy Kusnetz wrote:

> Again, everything works fine when ftping from the same client behind the
> firewall to LVS servers that are still running my 2.2.16 and 0.9.15
version
> of the patch.

        What do you mean? The client and the real server are on same
network (the internal masq net)? This is not working for the DeMasq
forwarding method which is used from the "portforwarding" and LVS.

> I know that the ip_masq_ftp module was overhauled for kernel 2.2.19.  I AM
> including starting the module with in_ports=21 for the new module.
>
> Does this sound like an LVS problem with the new version, or a problem
with
> the ip_masq_ftp module for kernel 2.2.19?

        If I understand this setup (is it new? Please, explain) you
are trying to connect directly the real server with the client?
Diagram?

> I've also verified I get the same problems with both the FTPD I am using
> with the old kernel, and WUFTPD.


Regards

--
Julian Anastasov <ja@xxxxxx>

<Prev in Thread]	Current Thread	[Next in Thread>
ip_masq_ftp 2.2.19, Jeremy Kusnetz Re: ip_masq_ftp 2.2.19, Julian Anastasov patch for ldirectord to support master server, Alois Treindl Re: [Ultramonkey-devel] patch for ldirectord to support master server, Andreas J. Koenig Re: [Ultramonkey-devel] patch for ldirectord to support master server, Alois Treindl Re: ip_masq_ftp 2.2.19, Joseph Mack stupid question: can I access LVS http-server from director, Alois Treindl Re: stupid question: can I access LVS http-server from director, Paul Baker Re: stupid question: can I access LVS http-server from director, Alois Treindl Re: stupid question: can I access LVS http-server from director, Joseph Mack RE: ip_masq_ftp 2.2.19, Jeremy Kusnetz <= RE: ip_masq_ftp 2.2.19, Julian Anastasov

Previous by Date:	Re: stupid question: can I access LVS http-server from director, Paul Baker
Next by Date:	Re: stupid question: can I access LVS http-server from director, Joseph Mack
Previous by Thread:	Re: stupid question: can I access LVS http-server from director, Joseph Mack
Next by Thread:	RE: ip_masq_ftp 2.2.19, Julian Anastasov
Indexes:	[Date] [Thread] [Top] [All Lists]