more ldirectord problems with fwmark

To:	lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject:	more ldirectord problems with fwmark
Cc:	Jacob Rief <jacob.rief@xxxxxxxxxxxx>, Horms <horms@xxxxxxxxxxxx>, Skliarouk Peter <skliaroukp@xxxxxxxxxxx>
From:	Jeremy Hansen <jeremy@xxxxxxxxxxxx>
Date:	Wed, 13 Sep 2000 14:16:02 -0400 (EDT)

Ok, so I copied the fwmark example directly.  Here is my config:

# Global Directives
checktimeout=3
checkinterval=1
fallback=127.0.0.1:80

virtual=1
        real=10.2.9.5:80 gate
        service=http
        request="test.html"
        receive="Test Page"
        scheduler=rr
        #persistent=600
        protocol=tcp

this was taken from heartbeat-0.4.8e's docs directory in the rpm.

This is what I get:

ld1: root:/etc/ha.d/conf 1157>ldirectord ldirectord.cf start
Error reading file conf/ldirectord.cf at line 19: invalid address for virtual 
server

so I try this cause according to the ldirectord man page:

       protocol = tcp|udp|fwm

       Protocol to be used. If the virtual is specified as an IP address
       and port then it must be one of tcp or udp and will default to
       tcp. If a firewall mark then the protocol must be fwm, which is the
       default.

virtual=1
        real=10.2.9.10:80 gate
        service=http
        request="test.html"
        receive="Test Page"
        scheduler=rr
        #persistent=600
        protocol=fwm

and I receive this:

ld1: root:/etc/ha.d/conf 1160>ldirectord ldirectord.cf start
Error reading file conf/ldirectord.cf at line 19: invalid address for
virtual server

same thing

so then I try this only because the man page is a bit misleading and I use
this in conjuction with protocol=fwm

virtual=10.2.9.5:1
        real=10.2.9.10:80 gate
        service=http
        request="test.html"
        receive="Test Page"
        scheduler=rr
        #persistent=600
        protocol=fwm

and of course this just does:

ld1: root:/etc/ha.d/conf 1174>ldirectord ldirectord.cf start
Error reading file conf/ldirectord.cf at line 26: protocol must be tcp or
udp if the virtual service is an address and port

in the man page:

       virtual = x.y.z.w:p|f

       Defines a virtual service by IP-address and port or
       firewall-mark.  A firewall-mark is an integer greater than
       zero. The configuration of marking packets is controled using the
       -m option to ipchains(8).  All real services and flags for a
       virtual service must follow this line immediately and be indented.

this leads me to believe that virtual=10.2.9.5:1, 1 being the fwmark would
be valid assuming that protocol is mark fwm.

So, can someone tell me if I'm just missing something really obvious or if
this looks like a bug in ldirectord.

Here is my ipchain output:

ld1: root:/etc/ha.d/conf 1176>ipchains -L -v
Chain input (policy ACCEPT: 10141304 packets, 1280301111 bytes):
 pkts bytes target     prot opt    tosa tosx  ifname     mark           outsize 
 source                destination           ports
  142  9640 -          all  ------ 0xFF 0x00  any        0x1            
anywhere        10.2.9.5           n/a
Chain forward (policy ACCEPT: 0 packets, 0 bytes):
Chain output (policy ACCEPT: 10800374 packets, 2902955911 bytes):

Thanks
-jeremy

eholes.org * jeremy@xxxxxxxxxx
-----------------------------------------
eholes have feelings too...

<Prev in Thread]	Current Thread	[Next in Thread>
more ldirectord problems with fwmark, Jeremy Hansen <=

Previous by Date:	Re: It looks good, it smells good, but..., Joseph Mack
Next by Date:	Re: It looks good, it smells good, but..., David Rodrigues
Previous by Thread:	RE: [Ultramonkey-devel] FW: Webmonkey / Ldirectord difficulties. Please advise., Scott Sherman
Next by Thread:	RedHat High Availability Server, Scott Sherman
Indexes:	[Date] [Thread] [Top] [All Lists]