Re: [lvs-users] CentOS 5 apache real servers don't respond

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: [lvs-users] CentOS 5 apache real servers don't respond
From:	James H <jeh1965@xxxxxxxxx>
Date:	Mon, 5 Apr 2010 08:12:05 -0700

Hi James C.,

Your server is likely getting confused during routing.  I recommend
this LVS-NAT configuration:
 - Public IPs for the "live web server" addresses should be what your
LVS director answers on. If you're simulating an environment first,
make sure to choose a different set of IPs than your "real" internal
network, eg 10.0.1.x
 - Internal network, this is your "LAN" segment, eg 192.168.1.x
 - LVS Network, this is what the director and real servers use to
communicate web traffic on, eg: 192.168.2.x

If you don't have enough interfaces, the Internal and LVS networks can
be VLANs on the same physical segment. The Public interfaces should be
on a distinct interface since in the real world you'll have this
network segment separate from your internal net (firewalled, etc).
Again this could be VLAN'd on the same physical network during
simulation, but don't do that in production.

Take a look then at this post, which describes how to then get the
real servers able to communicate with the outside world (and each
other via the "InternalNet" interface), and LVS traffic isolated to
the LVSNet interface:
http://mobiuscircle.com/2009/12/01/lvs-nat-realservers-as-clients/

So your configuration file should look closer to this:

serial_no = 41
primary = 10.0.1.2 # Real public IP, or 10.0.1.xxx simulated IP  <====
PUT THIS ON THE PUBLIC IF Network
primary_private = 192.168.1.30 # <===== PUT THIS ON THE InternalNet Network
service = lvs
backup_active = 1
backup = 10.0.1.3
backup_private = 192.168.1.31 # <===== PUT THIS ON THE InternalNet Network
heartbeat = 1
heartbeat_port = 539
keepalive = 6
deadtime = 18
network = nat
nat_nmask = 255.255.255.0
debug_level = NONE
monitor_links = 0
syncdaemon = 0
virtual HTTP {
     active = 1
     address = 10.0.1.174 eth0:1 # <==== PUT THIS ON THE PUBLIC IF Network
     vip_nmask = 255.255.255.0
     port = 80
     send = "GET / HTTP/1.0\r\n\r\n"
     expect = "HTTP"
     use_regex = 0
     load_monitor = none
     scheduler = wlc
     protocol = tcp
     timeout = 60
     reentry = 15
     quiesce_server = 1
     server APACHE1 {
         address = 192.168.2.153  # <===== PUT THIS ON THE LVS Network
         active = 1
         weight = 1
     }
}

Best,
James H.

_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [lvs-users] CentOS 5 apache real servers don't respond, James H <=

Previous by Date:	Re: [lvs-users] Two box lvs with UltrMonkey LO problem, Cyrus
Next by Date:	Re: [lvs-users] Two box lvs with UltrMonkey LO problem, Cyrus
Previous by Thread:	Re: [lvs-users] Two box lvs with UltrMonkey LO problem, Cyrus
Next by Thread:	[lvs-users] LVS director suddenly stops forwarding connections., Terry Inzauro
Indexes:	[Date] [Thread] [Top] [All Lists]