Re: [lvs-devel] moving ipvs() to POST/PREROUTING- was: Real servers as L

To: Jason Stubbs <j.stubbs@xxxxxxxxxxxxxxx>
Subject: Re: [lvs-devel] moving ipvs() to POST/PREROUTING- was: Real servers as LVS clients
Cc: lvs-devel@xxxxxxxxxxxxxxx
From: Joseph Mack NA3T <jmack@xxxxxxxx>
Date: Thu, 10 Apr 2008 07:09:45 -0700 (PDT)
On Thu, 10 Apr 2008, Jason Stubbs wrote:

Hi Jason,

        I'm moving this thread to the lvs-devel list.

(, in case you aren't subscribed)

Moving ip_vs_in to the end of POSTROUTING and moving ip_vs_out to the start of PREROUTING as in the attached patch seems to work and lets me do what I want. LVS-NAT and SNAT are working both independently and in conjunction to allow connections to VIPs from anywhere.

There's an effort to move ipvs() out of LOCAL_IN. Horms is coordinating the patches, but he's just moved from Japan to Sydney and will be even busier than he's been previously.

Well, SNAT works independently and LVS-NAT works in conjuction with SNAT but LVS-NAT isn't working on its own. I'll look into this and try and fix it, but the questions below still stand. :)

I haven't tested LVS-DR, LVS-TUN or localnode (although I think localnode should still work) and am not so worried if they don't work. Are there any other issues likely to arise with this patch? Is there any reason why LVS didn't hook into (or near) those places in the first place?

I understand that it'll likely never be accepted because it'd break pretty much every existing installation (VIP on an interface would not make it to IPVS)...

We're going to do it whether it breaks everything or not. It needs to be done.

Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at
Homepage It's GNU/Linux!
To unsubscribe from this list: send the line "unsubscribe lvs-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at

<Prev in Thread] Current Thread [Next in Thread>