|
Wayne wrote:
>
> In the process of setting up NAT load balancing,
> is there a easy way to relating server in both port 80 and
> port 443?
>
> Say I have two farms, each with same three servers.
> One farm load balancing HTTP requests and another
> farm load balancing HTTPS farms. To make sure the
> user in the persistent mode connected to the HTTP
> server always go to the same server for HTTPS service,
> we would like to have some way to relate the services
> between the two farms, is there a easy way to do it?
>
> If not, what else can we do? Thanks so much!
:) I just wrote about it today. You should get the idea with the following
explanation.
Two possibilities to solve this ``problem'' with LVS:
1. Use port 0 in your setup. (adv.: easy to set up and easy understand)
2. Use fwmark and group them together. (adv.: finer port granularity possible)
Example (1):
------------
ipvsadm -A -t 192.168.1.100:0 -s wlc -p 333 -M 255.255.255.255
ipvsadm -a -t 192.168.1.100:0 -r 192.168.1.1 -g -w 1
ipvsadm -a -t 192.168.1.100:0 -r 192.168.1.2 -g -w 1
Example (2):
------------
ipchains -A input -j ACCEPT -p tcp -d 192.168.1.100/32 80 -m 1 -l
ipchains -A input -j ACCEPT -p tcp -d 192.168.1.100/32 443 -m 1 -l
ipvsadm -A -f 1 -s wlc -p 333 -M 255.255.255.255
ipvsadm -a -f 1 -r 192.168.1.1 -g -w 1
ipvsadm -a -f 1 -r 192.168.1.2 -g -w 1
have phun,
Roberto Nibali, ratz
--
mailto: `echo NrOatSz@xxxxxxxxx | sed 's/[NOSPAM]//g'`
|
