LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: [lvs-users] LVS with Piranha in NAT Mode

To: frank@xxxxxxxxxxxx, "LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [lvs-users] LVS with Piranha in NAT Mode
Cc: Ryan O'Hara <rohara@xxxxxxxxxx>
From: Patrick Schaaf <netdev@xxxxxx>
Date: Wed, 9 Jul 2014 08:56:21 +0200
2014-07-09 7:17 GMT+02:00 Frank Kirschner <frank@xxxxxxxxxxxx>:
> 192.168.13.254 is the nat_router ip of the LVS. If I would change the
> default gateway of the hardware node,
> I will loose the NAT (port forwarding) of the 192.168.130.254 ISP gateway to
> the other containers inside the hardware node.
>
> What's the routing solution for this?

Policy routing (ip rule) on the real server, keyed on local source
192.168.13.0/24, e.g.
ip route add 192.168.13.0/24 table 1234
ip route add default via 192.168.13.254 table 1234
ip rule add from 192.168.13.0/24 table 1234

If you can make it so, best also separate the LVS traffic in a
different VLAN. You still need that policy routing, but the resulting
setup is simpler to debug and analyze and has some operational
advantages that I won't go into now :)

best regards
  Patrick

_______________________________________________
Please read the documentation before posting - it's available at:
http://www.linuxvirtualserver.org/

LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://lists.graemef.net/mailman/listinfo/lvs-users

<Prev in Thread] Current Thread [Next in Thread>