|
> -----Original Message-----
> From: lvs-users-bounces@xxxxxxxxxxxxxxxxxxxxxx [mailto:lvs-users-
> bounces@xxxxxxxxxxxxxxxxxxxxxx] On Behalf Of Chris Chen
> Sent: Monday, August 09, 2010 12:37 PM
> To: LinuxVirtualServer.org users mailing list.; Brent Jensen
> Subject: Re: [lvs-users] Firewall on LVS NAT
>
> Do you see this behavior with LVS-DR as well? I've got a few -DR directors
> running RHEL4 and RHEL5 that are causing all sorts of trouble with windows 7
> hosts, and ACK FIN/ACK RST with SSL handshakes--these problems seem to
> go away in testing with LVS-NAT, but if you're having trouble with NAT in
> production, part of me is wondering if we're heading down another dark
> path...
>
The real key to LVS-NAT is to *not* run NAT rules on /any/ traffic that travels
through LVS. That will avoid any bug I've ever encountered. If you must, then
just run the NFCT patch.
What are your problems with LVS-DR? Are there bugs filed, etc? I'm sure if
there's a sysstemic problem that the devs will want to resolve it asap.
Jason Faulkner
Linux Engineer, Rackspace Email & Apps
jason.faulkner@xxxxxxxxxxxxx
_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users
|
