|
On Fri, 15 Sep 2006, Per Jessen wrote:
o You took care of the arp problem, right?
hold on - there's no arp problem with LVS-Tun, since there's
no route directly from the client to the realservers. The
client only has a route to the VIP on the director. The
realservers are somewhere else and aren't advertising routes
to the VIP.
I believe so - on the RS, I've got
net.ipv4.conf.all.arp_ignore=1
net.ipv4.conf.all.arp_announce=2
o There's no rp_filter enabled on the RS?
# cat /proc/sys/net/ipv4/conf/all/rp_filter
1
leave all of these at the default setttings (actually maybe
not, the default setting for rp_filter for debian is wrong -
see the HOWTO).
Debugging LVS-Tun with realservers in some remote location
is difficult. Can you setup 3 (or 4) boxes on a bench:
client, director, and 1 (or 2) realserver and test that?
You'll need to put a static entry in the arp table of the
client for the VIP, so that the client doesn't send packets
to the realserver directly.
Joe
--
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!
|
