|
Hi,
I still cannot get a clear picture what your code is for. Would you
please give an example of how to use it.
Thanks,
Wensong
On Wed, 14 Feb 2001, Henrik Nordstrom wrote:
> Hi.
>
> Here is a small patch to make LVS keep the MARK, and have return traffic
> inherit the mark.
>
> We use this for routing purposes on a multihomed LVS server, to have
> return traffic routed back the same way as from where it was received.
> What we do is that we set the mark in the iptables mangle chain
> depending on source interface, and in the routing table use this mark to
> have return traffic routed back in the same (opposite) direction.
>
> The patch also moves the priority of LVS INPUT hook back to infront of
> iptables filter hook, this to be able to filter the traffic not picked
> up by LVS but matchin it's service definitions. We are not
> (yet) interested of filtering traffic to the virtual servers, but very
> interested in filtering what traffic reaches the Linux LVS-box itself.
>
> Regards
> Henrik Nordstrom
> SafeCore Technologies
>
|
