|
> Peter Mueller wrote:
>
>
> > # on realserver / application boxes
> > # rules for LVS to fix arp issue via Transparent Proxy
> > /sbin/ipchains -A input -j REDIRECT 80 -d 64.211.248.11 80 -p tcp
> > /sbin/ipchains -A input -j REDIRECT 80 -d 64.211.248.12 80 -p tcp
> > /sbin/ipchains -A input -j REDIRECT 443 -d 64.211.248.11 443 -p tcp
> > /sbin/ipchains -A input -j REDIRECT 443 -d 64.211.248.12 443 -p tcp
>
> in VS-DR the director is forwarding packets to the VIP.
> the -d target is the VIP and not the RIP.
> the httpd should be listening on the VIP:80
>
> Joe
Yep, 64.211.248.11 = Vip #1. 64.211.248.12 = Vip#2 Apache can be loaded
via lynx on the director or from a client.
I think I'm going to switch to dummy0 / hidden arp architecture...
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 0 > /proc/sys/net/ipv4/conf/eth0/forwarding
ifconfig dummy0 up
echo 1 > /proc/sys/net/ipv4/conf/all/hidden
echo 1 > /proc/sys/net/ipv4/conf/dummy0/hidden
ifconfig dummy0:0 64.211.248.11 up
route add -host 64.211.248.11 dev dummy0:0
ifconfig dummy0:1 64.211.248.12 up
route add -host 64.211.248.12 dev dummy0:1
well here goes nothing :)
PS - don't you sleep? I saw a post at 4:30am (?!) ... let me know your
secret for avoiding sleep, ok?
|
