|
Peter Mueller a dit :
>> I hope this is my last question about ipvs & netfilter interactions...
>> Do I really need to use the Antefacto patch if I want to have a full
>> features Netfilter/IPtables filtering box that also do loadbalancing &
>> failover stuff with ipvs ?
>
> What features are you interested in?
- NAT & connection tracking.
I need connection from loadbalancers to real servers to be snat'ed with
the IP of the external NIC of the LBs :
Clients ---+
|
+-+-+
LB LB
+-+-+ <- SNAT / LB's eth1
|
+---+
| +- RS1
| +- RS2
Internet --+---+
Actually these connections "come" with Clients IP (quite normal) and
masquerading/snating do not work on LB... So I need to add static routes
for trafic from RS (http proxies) and for my proxies are double connected
to each LB, it is a real headache !
--
Guillaume Arcas
---------------------------------------------------
Le monde est ma représentation. S'il est une vérité
qu'on puisse affirmer, c'est bien celle-là.
A. Schopenhauer
|
