|
> On Tue, 18 Feb 2003, Ian Millsom wrote:
> > Sorry should have stated. There were no NAT rules at all. Of course to
> > get net you would need MASQ :) which at this time, was not enabled
>
> I've removed all nat and filter rules; still no go. Here's my setup:
>
> Virtual IP: 192.168.0.1
> LB Internal IP: 10.0.0.1
> RS1 IP: 10.0.0.10
> RS2 IP: 10.0.0.11
>
How many NIC you have in your director?
not that it should matter
> 10.0.0.1 is the default gateway for everything behind the firewall. If I
> hit 192.168.0.1 port 80 from 192.168.0.2, it works great.. if I try to hit
> it from the load balancer itself, either of the real servers, or 10.0.0.2,
> no go. It's weird; sounds like we've got a very similar config, but it
> works for you and not for me. :) Do you have anything in /proc being
> tweaked from the defaults?
IM currently implementing another LVS project for an ISP in melbourne
Australia, I have a second director here, and can set this up under.
Ill post back results once done.
Below is a dump of relevant files
/proc/sys/net/ipv4
icmp_echo_ignore_all 0
icmp_echo_ignore_broadcasts 0
icmp_ignore_bogus_error_responses 0
icmp_ratelimit 100
icmp_ratemask 6168
igmp_max_memberships 20
inet_peer_gc_maxtime 120
inet_peer_gc_mintime 10
inet_peer_maxttl 600
inet_peer_minttl 120
inet_peer_threshold 65664
ip_autoconfig 0
ip_conntrack_max 65400
ip_default_ttl 64
ip_dynaddr 0
ip_forward 1
ipfrag_high_thresh 262144
ipfrag_low_thresh 196608
ipfrag_time 30
ip_local_port_range 32768 61000
ip_nonlocal_bind 0
ip_no_pmtu_disc 0
tcp_abort_on_overflow 0
tcp_adv_win_scale 2
tcp_app_win 31
tcp_dsack 1
tcp_ecn 1
tcp_fack 1
tcp_fin_timeout 60
tcp_keepalive_intvl 75
tcp_keepalive_probes 9
tcp_keepalive_time 7200
tcp_max_orphans 32768
tcp_max_syn_backlog 1024
tcp_max_tw_buckets 180000
tcp_mem 195584 196096 196608
tcp_orphan_retries 0
tcp_reordering 3
tcp_retrans_collapse 1
tcp_retries1 3
tcp_retries2 15
tcp_rfc1337 0
tcp_rmem 4096 87380 174760
tcp_sack 1
tcp_stdurg 0
tcp_synack_retries 5
tcp_syncookies 0
tcp_syn_retries 5
tcp_timestamps 1
tcp_tw_recycle 0
tcp_tw_reuse 0
tcp_window_scaling 1
tcp_wmem 4096 16384 131072
/proc/sys/net/ipv4/route
error_burst 500
error_cost 100
gc_elasticity 8
gc_interval 60
gc_min_interval 5
gc_thresh 8192
gc_timeout 300
max_delay 10
max_size 131072
min_adv_mss 256
min_delay 2
min_pmtu 552
mtu_expires 600
redirect_load 2
redirect_number 9
redirect_silence 2048
/proc/sys/net/ipv4/vs
am_droprate 10
amemthresh 1024
cache_bypass 0
debug_level 9
drop_entry 0
drop_packet 0
expire_nodest_conn 0
lblc_expiration 86400
lblcr_expiration 86400
nat_icmp_send 0
secure_tcp 0
sync_threshold 3
timeout_close 10
timeout_closewait 60
timeout_established 480
timeout_finwait 60
timeout_icmp 60
timeout_lastack 30
timeout_listen 120
timeout_synack 100
timeout_synrecv 10
timeout_synsent 60
timeout_timewait 60
timeout_udp 180
/proc/sys/net/ipv4/conf/eth0
accept_redirects 1
accept_source_route 1
arp_filter 0
bootp_relay 0
forwarding 1
log_martians 0
mc_forwarding 0
medium_id 0
proxy_arp 0
rp_filter 1
secure_redirects 1
send_redirects 1
shared_media 1
tag 0
/proc/sys/net/ipv4/conf/eth1
accept_redirects 1
accept_source_route 1
arp_filter 0
bootp_relay 0
forwarding 1
log_martians 0
mc_forwarding 0
medium_id 0
proxy_arp 0
rp_filter 1
secure_redirects 1
send_redirects 1
shared_media 1
tag 0
/proc/sys/net/ipv4/conf/all
accept_redirects 0
accept_source_route 0
arp_filter 0
bootp_relay 0
forwarding 1
log_martians 0
mc_forwarding 0
medium_id 0
proxy_arp 0
rp_filter 0
secure_redirects 1
send_redirects 1
shared_media 1
tag 0
>
> > LVS works without any rules, so try and remove them and try again. FYI
> > I am using 2.4.20 and IPVS v1.0.5 with this working.
>
> I'm on 2.4.20, IPVS v1.0.7.. no go.
>
>
|
