LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

[lvs-users] Help with getting started

from [Kurt Schwehr] [Permanent Link]
To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: [lvs-users] Help with getting started
From: "Kurt Schwehr" <schwehr@xxxxxxxxx>
Date: Fri, 11 Feb 2000 18:20:20 -0600 
Hi All,

I've been trying to get a test setup going with lvs without luck.  I'm
just trying to get a simple test setup running.  I'm going backwards
since that seems to be easier to just have one machine on the private
network that is browsing pages.  I've been reading the HOWTOs and
haven't figured out why it's not working.  Could someone be so kind as
to clue me in? 

I've tested out masq and I got the browser to access outside
sites. Here is what I'm trying to do for LVS/NAT, just to see how
things work:


204.71.200.75                   206.79.171.51
www.yahoo.com                   www.lycos.com
    |                               |
    |                               |
    -------------  Internet ---------
                      |
                   router to world
                      |
                  x.x.x.207
                    laptop
                   10.1.0.1
                      |
                      |
                   10.1.0.2
               simple web browser


laptop: RH 6.1 linux - 2.2.14 w/ lvs patch; 2 ethernet cards.

Here is what I do on the laptop:

echo "1" > /proc/sys/net/ipv4/ip_forward
ipvsadm -a -t 10.1.0.1:80 -r 204.71.200.75 -m
ipvsadm -a -t 10.1.0.1:80 -r 206.79.171.51 -m
ipchains -A forward -j MASQ -s 10.1.0.1/24 -d 0.0.0.0/0


# ipchains --list
Chain input (policy ACCEPT):
Chain forward (policy ACCEPT):
target     prot opt     source                destination           ports
MASQ       all  ------  10.1.0.0/24          anywhere              n/a
Chain output (policy ACCEPT):

# ipvsadm -l
IP Virtual Server version 0.9.7 (size=4096)
Prot LocalAddress:Port Scheduler Flags
  -> RemoteAddress:Port          Forward Weight ActiveConn InActConn
TCP  10.1.0.1:www rr
  -> sjc-www.sjc.lycos.com:www   Masq    1      0          1         
  -> www10.yahoo.com:www         Masq    1      0          2         

# lsmod
ip_vs_rr                 704   1  (autoclean)
af_packet               5708   2  (autoclean)
<snip>


> egrep -i "masq|fire|virt" .config 
CONFIG_FIREWALL=y
CONFIG_IP_FIREWALL=y
CONFIG_IP_FIREWALL_NETLINK=y
CONFIG_IP_MASQUERADE=y
CONFIG_IP_MASQUERADE_ICMP=y
CONFIG_IP_MASQUERADE_MOD=y
CONFIG_IP_MASQUERADE_IPAUTOFW=m
CONFIG_IP_MASQUERADE_IPPORTFW=m
CONFIG_IP_MASQUERADE_MFW=m
CONFIG_IP_MASQUERADE_VS=y
CONFIG_IP_MASQUERADE_VS_TAB_BITS=12
CONFIG_IP_MASQUERADE_VS_RR=m
CONFIG_IP_MASQUERADE_VS_WRR=m
CONFIG_IP_MASQUERADE_VS_LC=m
CONFIG_IP_MASQUERADE_VS_WLC=m


With tcpdump, I see the connection attempt from the bowser on 10.1.0.x
and then on the other side, I see the arp requests succeeding, but
nothing more.

Thanks!
-Kurt


Kurt Schwehr -- kurt@xxxxxxxxx 

----------------------------------------------------------------------
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe, e-mail: lvs-users-unsubscribe@xxxxxxxxxxxxxxxxxxxxxx
For additional commands, e-mail: lvs-users-help@xxxxxxxxxxxxxxxxxxxxxx
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [lvs-users] ipchains REDIRECT approach to get around the arp problem, Joseph Mack
Next by Date:  Re: [lvs-users] Help with getting started, Joseph Mack
Previous by Thread:  [lvs-users] ipchains REDIRECT approach to get around the arp problem, Doug Bagley
Next by Thread:  Re: [lvs-users] Help with getting started, Joseph Mack
Indexes:  [Date] [Thread] [Top] [All Lists]