Re: LVS-NAT and Squid Real Server

[Bunpot Thanaboonsombut <bunpotth@xxxxxxxxx>]

This is result from ipvsadm -L -c.

[root@lvsdir1 ~]# ipvsadm -L -c
IPVS connection entries
pro expire state       source             virtual            destination
TCP 00:21  SYN_RECV    172.30.12.165:1961 172.30.33.89:squid 172.30.48.100:squid
TCP 00:11  NONE        172.30.12.165:0    172.30.33.89:squid 172.30.48.100:squid
TCP 00:18  SYN_RECV    172.30.12.165:1960 172.30.33.89:squid 172.30.48.100:squid


On 11/2/05, Bunpot Thanaboonsombut <bunpotth@xxxxxxxxx> wrote:
> Dear all,
>
> I am a linux newbies. I want to setup squid proxy cluster with LVS by
> using LVS-NAT topology. Only one reason that I have to use LVS-NAT is
> because my company is using Red Hat Cluster Suite.
>
> LVS seems work fine but not work when I try to access proxy service
> via Virtual IP.
> netstat shows that LVS director is not listening on port 3128.
>
> Are there configurations that I have to configure (especially,
> iptables)? Please give me a clue in details because I cannot
> understand lvs documentation in some topics.
>
> Best Regards,
> Bunpot T.
>
> Figure 1: Current Prototype (Development/Testing)
> =========
> ________________
> |Internet Access | 172.30.33.90
> |Check Point FW-1|
> |________________|
>               |
>               |
>             __|_______        eth1   - 172.30.33.110 GW 172.30.33.90
>            |   RHCS   |eth0   eth1:1 - 172.30.33.89 (Publicly routable VIP)
>            |   LVS    |---|   eth0   - 172.30.48.90
>            |__________|   |   eth0:1 - 172.30.48.95 (NAT router IP)
>                           |
>                           |
>          ------------------
>          |
>          |
> RIP1=172.30.48.100 using NAT router IP as gateway (172.30.48.95)
>   _____________
>  |             |
>  | Real server |
>  |_____________|
> SQUID running on port 3128
>
>
>
> Figure 2: Result from ipvsadm command
> =========
>
>
> IP Virtual Server version 1.2.0 (size=4096)
> Prot LocalAddress:Port Scheduler Flags
>  -> RemoteAddress:Port           Forward Weight ActiveConn InActConn
> TCP  172.30.33.89:squid dh persistent 60
>  -> 172.30.48.100:squid          Masq    1      0          0
>
>
> Figure 3: lvs.cf file (generated by Piranha-gui)
> =========
>
> serial_no = 41
> primary = 172.30.33.100
> service = lvs
> backup = 0.0.0.0
> heartbeat = 1
> heartbeat_port = 539
> keepalive = 6
> deadtime = 18
> network = nat
> nat_router = 172.30.48.95 eth0:1
> nat_nmask = 255.255.255.0
> debug_level = NONE
> virtual Squid {
>     active = 1
>     address = 172.30.33.89 eth1:1
>     vip_nmask = 255.255.255.0
>     port = 3128
>     persistent = 60
>     send = "GET / HTTP/1.0\r\n\r\n"
>     expect = "HTTP"
>     use_regex = 0
>     load_monitor = none
>     scheduler = dh
>     protocol = tcp
>     timeout = 6
>     reentry = 15
>     quiesce_server = 0
>     server it1proxy {
>         address = 172.30.48.100
>         active = 1
>         weight = 1
>     }
> }
>