|
I've setup an LVS and a Squid in reverse proxy mode. Squid is setup with
a certificate to decrypt https traffic and sends http back to the real
server. This has been tested and working. I've setup another Squid and
real server the same way. Now I'm trying to get the LVS to load balance
the Squids. The request would be https to the LVS then https to Squid.
Squid would decrypt the https and forward http to the backend server.
Here is my conf file:
checktimeout=10
checkinterval=2
autoreload=no
logfile="/var/log/ldirectord.log"
#logfile="local0"
quiescent=yes
# Virtual Server for HTTP
virtual=10.10.1.20:443
fallback=127.0.0.1:80
real=10.10.1.12:443 gate
real=10.10.1.13:443 gate
service=http
request="index.html"
receive="Test Page"
scheduler=wlc
persistent=600
protocol=tcp
checktype=negotiate
10.10.1.12 and 10.10.1.13 are the Squids.
Here is the output from ipvsadm -L
[root@LB_Master ha.d]# ipvsadm -L
IP Virtual Server version 1.0.8 (size=65536)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 10.10.1.20:https wlc persistent 600
-> 10.10.1.13:https Route 0 0 0
-> 10.10.1.12:https Route 0 0 0
-> LB_Master:https Local 1 0 0
Why weight 0?
Can LVS accepted https traffic? When I do a port scan 443 is not open.
Here is a wget of the index.html and works:
[root@LB_Master ha.d]# wget https://10.10.1.12/index.html
--16:43:50-- https://10.10.1.12/index.html
=> `index.html.1'
Connecting to 10.10.1.12:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 11 [text/html]
100%[===================================================================
===================>] 11 10.74K/s ETA 00:00
16:43:50 (10.74 KB/s) - `index.html.1' saved [11/11]
What am I doing wrong and how do I get this to work. Thanks for any
help.
|
