|
Hi LVS-Users
Perhaps I should post my setup:
- Kernel 2.2.12 with ipvs-Patch 0.9.0
- A setup script
- ip_forwarding
This is an excerpt of my script lb.log:
---------------------------------------
991005174630 Checking /etc/lb.conf for errors
991005174631 ipchains -A input -s 0/0 -d xxx.yyy.197.64/27 -i eth0 -j
DENY
991005174631 ipchains -A input -s 0/0 -d xxx.yyy.199.64/27 -i eth1 -j
DENY
991005174631 ifconfig eth1:0 xxx.yyy.197.72 netmask 255.255.255.255
broadcast xxx.yyy.197.72 up
991005174631 route add -host xxx.yyy.197.72 dev eth1:0
991005174631 /sbin/ipvsadm -A -t xxx.yyy.197.72:80 -s wrr
991005174631 /sbin/ipvsadm -a -t xxx.yyy.197.72:80 -r xxx.yyy.197.66:80
-g -w 1
991005174631 /sbin/ipvsadm -a -t xxx.yyy.197.72:80 -r xxx.yyy.197.67:80
-g -w 1
991005174631 Started new process with PID=4133
991005174634 All Webservers are up
991005174636 Shutting down ...
991005174636 Killed process with PID=4133
netstat -rn:
------------
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt
Iface
xxx.yyy.197.72 0.0.0.0 255.255.255.255 UH 0 0 0
eth1
127.0.0.1 0.0.0.0 255.255.255.255 UH 0 0 0
lo
xxx.yyy.197.64 0.0.0.0 255.255.255.224 U 0 0 0
eth1
xxx.yyy.199.64 0.0.0.0 255.255.255.224 U 0 0 0
eth0
192.168.99.0 0.0.0.0 255.255.255.0 U 0 0 0
eth4
192.168.88.0 0.0.0.0 255.255.255.0 U 0 0 0
eth5
0.0.0.0 xxx.yyy.197.65 0.0.0.0 UG 0 0 0
eth1
(Note: eth4, eth5 are heartbeat interfaces for HA and xxx.yyy.197.65 is
megate3, the firewall! the xxx.yyy.199.64/27-net will be used to
loadbalance another customer.)
ifconfig -a | grep in
---------------------
eth0 Link encap:Ethernet HWaddr 00:50:DA:21:B8:37
inet addr:xxx.yyy.199.75 Bcast:138.190.199.95
Mask:255.255.255.224
eth1 Link encap:Ethernet HWaddr 00:50:DA:21:B9:20
inet addr:xxx.yyy.197.75 Bcast:138.190.197.95
Mask:255.255.255.224
eth1:0 Link encap:Ethernet HWaddr 00:50:DA:21:B9:20
inet addr:xxx.yyy.197.72 Bcast:138.190.197.72
Mask:255.255.255.255
eth2 Link encap:Ethernet HWaddr 00:50:DA:21:B5:63
eth3 Link encap:Ethernet HWaddr 00:50:DA:21:B7:E0
eth4 Link encap:Ethernet HWaddr 00:50:DA:21:B8:35
inet addr:192.168.99.1 Bcast:192.168.99.255
Mask:255.255.255.0
eth5 Link encap:Ethernet HWaddr 00:50:DA:21:B5:3C
inet addr:192.168.88.1 Bcast:192.168.88.255
Mask:255.255.255.0
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
ipvsadm -L
----------
IP Virtual Server version 0.9.0 (size=65536)
Protocol LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP 138.190.197.72:80 wrr
-> 138.190.197.67:80 Route 1 0 0
-> 138.190.197.66:80 Route 1 0 0
So, this looks ok, but I get this tcpdump-output I mailed. The problem
is, that there are no replies to any http request from xxx.yyy.197.65
(firewall). Does someone of you with deeper TCP/IP-experience know what
is going on? It is really urgent.
Roberto Nibali
----------------------------------------------------------------------
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe, e-mail: lvs-users-unsubscribe@xxxxxxxxxxxxxxxxxxxxxx
For additional commands, e-mail: lvs-users-help@xxxxxxxxxxxxxxxxxxxxxx
|
