Re: [lvs-users] LVS-NAT and real servers accessing the public networks

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: [lvs-users] LVS-NAT and real servers accessing the public networks
From:	devnull <devnull@xxxxxxxxxxxxxxxxx>
Date:	Mon, 21 Dec 2009 12:19:55 -0700

Yeah, I'm a little confused, you gave a link to this page:
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.non-lvs_clients_on_realservers.html

Which I read the whole thing, and found this section specifically that
answers my question,

"Any ideas on how to get internet access working on the real servers
(*i.e.*clients unrelated to the LVS services) using LVS-NAT? I've read
something
about virtual_routes in keepalived but couldn't find any detailed
instructions yet."
...
on director  enable ipforwarding,
and on director, set up masquerading:

iptables -t nat -A POSTROUTING -s <priv net>/<netmask> -d
<privnet>/<netmask> -j ACCEPT
iptables -t nat -A POSTROUTING -s <priv net>/<netmask> -j MASQUERADE

Both of which I did, (forwarding was already enabled) and I get internet
access on my real servers. But my VIP's stop working. I'm confused on where
you gave me the answer, because I mentioned in my original posting that I
had setup the 2nd POSTROUTING MASQUERADE and that my issue was that the
VIP's stop working its either working internet access by adding those rules
and no LVS, or a working LVS and no internet access.

Please if I read this wrong, or missed something on the page then I
apologize for the messages.

Kyle

On Mon, Dec 21, 2009 at 11:42 AM, Joseph Mack NA3T <jmack@xxxxxxxx> wrote:

> On Mon, 21 Dec 2009, devnull wrote:
>
> > I'm still kind of stuck here,
>
> You ignored the answer when I gave it, instead repeating
> your original posting, twice now. Do you expect anyone else
> is going to bother?
>
> Joe
>
> --
> Joseph Mack NA3T EME(B,D), FM05lw North Carolina
> jmack (at) wm7d (dot) net - azimuthal equidistant map
> generator at http://www.wm7d.net/azproj.shtml
> Homepage http://www.austintek.com/ It's GNU/Linux!
>
> _______________________________________________
> Please read the documentation before posting - it's available at:
> http://www.linuxvirtualserver.org/
>
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://lists.graemef.net/mailman/listinfo/lvs-users
>
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [lvs-users] LVS-NAT and real servers accessing the public networks, devnull Re: [lvs-users] LVS-NAT and real servers accessing the public networks, devnull Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T Re: [lvs-users] LVS-NAT and real servers accessing the public networks, devnull <= Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T Re: [lvs-users] LVS-NAT and real servers accessing the public networks, James H

Previous by Date:	Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T
Next by Date:	Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T
Previous by Thread:	Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T
Next by Thread:	Re: [lvs-users] LVS-NAT and real servers accessing the public networks, Joseph Mack NA3T
Indexes:	[Date] [Thread] [Top] [All Lists]