LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: Cannot get this thing to work

To: Gabriel Neagoe <Gabriel.Neagoe@xxxxxx>
Subject: Re: Cannot get this thing to work
Cc: "Baeseman, Cliff" <Cliff.Baeseman@xxxxxxxxxxxxx>, linux-virtualserver@xxxxxxxxxxxx
From: Jiri Gubik <jgubik@xxxxxxxxxxx>
Date: Thu, 08 Jul 1999 17:19:39 +0400
Hi,
I am not able to run VS with masquerading too. I thing that I am doing
everything right.
Here is my ipvsadm -L when I am trying open www connection:

IP Virtual Server (Version 0.6)
Protocol Local Address:Port Scheduler
      -> Remote Address:Port   Forward Weight ActiveConn FinConn
TCP A.B.C.D:80 wlc
      -> 192.168.1.110:80      Masq    1      1          0      

I can see one active connection.   
Here is my ipchains -L -M

prot expire   source               destination          ports
TCP  00:59.48 192.168.1.110        my.computer.com       www (80) ->
1146

I am not getting any connection to 192.168.1.110. (No packet is going
from VS box - verified by tcpdump) I have compiled kernel with suggested
settings only. IP masq from 192.168.1.x is working fine. Here is my
ipchains -L

Chain input (policy ACCEPT):
Chain forward (policy ACCEPT):
target     prot opt     source                destination          
ports
MASQ       all  ------  localnet/24           anywhere              n/a
Chain output (policy ACCEPT):

I here anybody who has working VS with masquerading??? 
Regards Jiri


Gabriel Neagoe wrote:
> 
> Hello Cliff
> 
> I had a similar problem with the NAT on the VS.
> First take a look in the connections list on the real server (use "netstat")
> -if you have no connection on VS-s address and port that means you have a
> problem with the distribution
> -if you have a SYN_RCVD connection on the real server there is something
> wrong with the returning packets ( I had a BIG problem here...the solution
> is to recompile the kernel with the _ONLY_ masquerading settings according
> to specifications of the VS ... if you add some masq features, although
> everything seems perfect, it won't work)
> 
> hope that helps
> ------------------------------------
> Gabriel Neagoe, GN379-RIPE
> Networking consultant
> Cisco product manager, CCNA, CCDA
> S&T Romania
> ------------------------------------
> 
> -----Original Message-----
> From: Baeseman, Cliff [mailto:Cliff.Baeseman@xxxxxxxxxxxxx]
> Sent: Wednesday, July 07, 1999 7:38 PM
> To: linux-virtualserver@xxxxxxxxxxxx
> Subject: Cannot get this thing to work
> 
> Here is my problem....
> 
> I built a new kernel last week a .10 with the patch applied.
> 
> I put in my routing according to the NAT documentation. All The commands
> were accepted and I can see the routes in the table. No matter how much or
> what I try it is not forwarding anything.
> 
> my setup
> 
> Virtual IP 127.1.175.12  Machine Name Hacker
> 
> Real Server 127.1.175.2 Machine Name Bravo
> 
> my setup follows
> 
>         echo "1" > /proc/sys/net/ipv4/ip_forward       <---- what this does
> I have no idea
>         ipchains -A forward -j MASQ -s 127.1.175.0/24 -d 0.0.0.0/0  <---I do
> not know if this is correct
> Add virtual service and link a scheduler to it
>         ipvsadm -A -t127.1.175.12:80 -s wlc (Weight least connections
> scheduling)
> 
> Add real server and select forwarding method
>         ipvsadm -a -t 127.1.175.12:80 -R 127.1.175.2:80 -m
> 
> I have no web server running on the "director" node Hacker just on the real
> server bravo.
> 
> I try to connect from a client browser and get no response whatsoever.
> 
> How can I troubleshoot this problem....  I am totally at a loss here.
> 
> Cliff
> 
> - "If you kiss me, I'll turn into a beautiful princess."
> - "Look, I'm a computer programmer. I don't have time for girls,
> but a talking frog is very very cool."
> 

<Prev in Thread] Current Thread [Next in Thread>