[lvs-users] LVS-NAT only works when tcpdump runs on director

To:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject:	[lvs-users] LVS-NAT only works when tcpdump runs on director
From:	Vlad Dogaru <ddvlad@xxxxxxxxxx>
Date:	Thu, 08 Apr 2010 19:54:59 +0300

Hello, everyone,

I am just getting the hang of LVS and am using a virtual machine
(OpenVZ-based) setup for this purpose. I have run into a very strage
problem while testing: the client can only connect to a RS if tcpdump
runs on the director.

My setup involves 4 virtual machines, one simulating the client and 3
real servers. The host node acts as a director.

The three real servers are connected to a bridge, br0, in 10.0.0.0/8
network. Thus, RIP=10.0.0.x. The client is in network 192.168.0.0/24,
with CIP=192.168.0.50 and VIP=192.168.0.50. The host has a masquerade
rule for the RIPs.

Now, all the machines communicate properly, questions 1-3 from [1] are
all right -- I'm not very savvy at reading tcpdump output, so I'm not
sure about the fourth. Problem is, while testing, I've noticed that if I
run a tcpdump, for instance
        tcpdump -i any -ln host 192.168.0.50
on the director, wget just works, repeatedly (hence, on different real
servers). Otherwise, if tcpdump is not running on the director, client
receives 'Connection refused' on VIP. If tcpdump is running on a RS, I
invariably get 'Connection refused' (I've tried multiple times, to
account for scheduling.

Here is the configuration on the director, though I suspect that, given
the symptoms, I could not have messed it up.

srisp-lab:~# ipvsadm
IP Virtual Server version 1.2.1 (size=4096)
Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port           Forward Weight ActiveConn InActConn
TCP  srisp-lab.local:www rr
  -> realserver3:www              Masq    1      0          0
  -> realserver2:www              Masq    1      0          0
  -> realserver1:www              Masq    1      0          0

[1]
http://www.austintek.com/LVS/LVS-HOWTO/HOWTO/LVS-HOWTO.LVS-NAT.html#lvs_nat_julians_setup


Has anyone encountered a similar issue? Am I somehow missing the obvious?

Thanks in advance,
Vlad

_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread]	Current Thread	[Next in Thread>
[lvs-users] LVS-NAT only works when tcpdump runs on director, Vlad Dogaru <= Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, Partica Cristian Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, svensven Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, Vlad Dogaru Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, L.S. Keijser

Previous by Date:	Re: [lvs-users] Dynamic Redirects, Jay Faulkner
Next by Date:	Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, Partica Cristian
Previous by Thread:	[lvs-users] Dynamic Redirects, Harmer, Sean
Next by Thread:	Re: [lvs-users] LVS-NAT only works when tcpdump runs on director, Partica Cristian
Indexes:	[Date] [Thread] [Top] [All Lists]