|
Horms wrote:
>
> On Tue, May 18, 2004 at 05:35:26PM +0100, Malcolm Turnbull wrote:
> >
> > I'll try it myself anyway but just wanted to know if anyone knew allready.
> >
> > i.e. can the load balancer listen on VIP:80 & 443
> > but send all packets to port 443 ?
>
> LVS-DR cannot do this. LVS-NAT can.
>
> > Can it be done with an iptables rule ?
>
> Probably not, as how would you rewrite the return packets when
> you are using LVS-DR? In a nutshell what you are after is to
> map port 80 to port 443. This is a form of NAT really. So LVS-NAT
> is really your best bet.
Francois Jeanmougin has rules running on the realserver to rewrite the
ports.
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-DR.html#re-mapping_ports_lvs_dr
however in your case, you'll have to figure out which replies need to
be rewritten back to port 80 and which will not need to be rewritten
Joe
--
Joseph Mack PhD, High Performance Computing & Scientific Visualization
SAIC, Supporting the EPA Research Triangle Park, NC 919-541-0007
Federal Contact - John B. Smith 919-541-1087 - smith.johnb@xxxxxxx
|
