Re: Iptables and Keepalived

lvs-users

Re: Iptables and Keepalived

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: Iptables and Keepalived
From:	Graeme Fowler <graeme@xxxxxxxxxxx>
Date:	Mon, 09 Oct 2006 14:41:18 +0100

On 09/10/2006 14:38, Sébastien CRAMATTE wrote:

I've tried

iptables -p vrrp -A INPUT -j ACCEPT
iptables -p vrrp -A OUTPUT -j ACCEPT

seems that not works :(


iptables -I INPUT -d 224.0.0.0/8 -j ACCEPT

You need to explicitly accept multicast for this to work. You can makeit more accurate by setting the appropriate config option in yourkeepalived config to set the mcast_src_address, and then have acorresponding rule to let that in.


Graeme

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Iptables and Keepalived, Sébastien CRAMATTE Re: Iptables and Keepalived, Joseph Mack NA3T Re: Iptables and Keepalived, Sébastien CRAMATTE Re: Iptables and Keepalived, Graeme Fowler <= Re: Iptables and Keepalived, Joseph Mack NA3T Re: Iptables and Keepalived, Sébastien CRAMATTE

Previous by Date:	Re: Cannot get ipvs fwmark service to work, Joseph Mack NA3T
Next by Date:	Re: Iptables and Keepalived, Joseph Mack NA3T
Previous by Thread:	Re: Iptables and Keepalived, Sébastien CRAMATTE
Next by Thread:	Re: Iptables and Keepalived, Joseph Mack NA3T
Indexes:	[Date] [Thread] [Top] [All Lists]