RE: lvs not workimg :(

To:	<lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	RE: lvs not workimg :(
From:	"Mark Miller" <markm@xxxxxxxxxxxxxxxxxxx>
Date:	Thu, 24 May 2001 11:46:53 -0600

I don't think my NAT setup (very similar to this) has ever given me anything
when I do an iptables -t nat -L so don't worry if you don't see anything
with this.

I'd do a:
ipvsadm -Lcn

If you have a bunch of SYN_RECV entries then you may have an arp issue or
routing problem in the backend of this thing.  I'd do some quick testing
though to narrow things down.

If you ping from your real servers to your external interface on your load
balancer then you'll know your routing is good.  In fact you should be able
to ping all the way from your real server to the VIP itself.

Also, if it's an arp issue one thing to do is to run a 'watch arp' on your
real servers to see what they're seeing in their arp cache at any time.  I
know arp issues aren't listed as a problem for the LVS-NAT but I seem to
have suffered from them when switching from one load balancer to another.

Hope this helps.

Mark


> -----Original Message-----
> From: lvs-users-admin@xxxxxxxxxxxxxxxxxxxxxx
> [mailto:lvs-users-admin@xxxxxxxxxxxxxxxxxxxxxx]On Behalf Of
> Yasser Nabi
> Sent: Thursday, May 24, 2001 10:03 AM
> To: 'lvs-users@xxxxxxxxxxxxxxxxxxxxxx'
> Subject: lvs not workimg :(
>
>
> Hi,
>
> I am running Redhat 7.1 and have compiled kernel 2.4.4 with
> iptables v1.2.2
> LVS 0.9.0....
>
> below is my LVS config:
>
> IP Virtual Server version 0.9.0 (size=16777216)
> Prot LocalAddress:Port Scheduler Flags
>   -> RemoteAddress:Port             Forward Weight ActiveConn
> InActConn
> TCP  192.168.1.101:http lc
>   -> 10.0.0.11:http                 Masq    1      0
> 0
>   -> 10.0.0.10:http                 Masq    1      0          0
>
> below is my interface config:
>
> eth0      Link encap:Ethernet  HWaddr 00:50:8B:65:2C:04
>           inet addr:192.168.1.1  Bcast:192.168.1.255
> Mask:255.255.255.0
>
> eth0:1    Link encap:Ethernet  HWaddr 00:50:8B:65:2C:04
>           inet addr:192.168.1.101  Bcast:192.168.1.255
> Mask:255.255.255.0
>
> eth1      Link encap:Ethernet  HWaddr 00:50:8B:F6:BA:62
>           inet addr:10.0.0.1  Bcast:10.255.255.255  Mask:255.0.0.0
>
> eth1:1    Link encap:Ethernet  HWaddr 00:50:8B:F6:BA:62
>           inet addr:10.0.0.254  Bcast:10.255.255.255  Mask:255.0.0.0
>
> lo        Link encap:Local Loopback
>           inet addr:127.0.0.1  Mask:255.0.0.0
>
> ip forwarding is enabled
>
> The problem is i just cant get LVS working....
>
> I try connecting to 192.168.1.101 (the virtual ip) on port 80, but it
> fails... it looks like its try to connect locally.. below is
> some tcpdump's:
>
> ernel filter, protocol ALL, TURBO mode (575 frames), datagram
> packet socket
> tcpdump: listening on all devices
> 16:01:45.236085 eth0 < 192.168.1.100.4030 > 192.168.1.101.http: S
> 321958821:321958821(0) win 8192 <mss 1460> (DF)
> 16:01:45.236130 eth0 > 192.168.1.101.http >
> 192.168.1.100.4030: R 0:0(0) ack
> 321958822 win 0 (DF)
> 16:01:45.683023 eth0 < 192.168.1.100.4030 > 192.168.1.101.http: S
> 321958821:321958821(0) win 8192 <mss 1460> (DF)
> 16:01:45.683077 eth0 > 192.168.1.101.http >
> 192.168.1.100.4030: R 0:0(0) ack
> 1 win 0 (DF)
> 16:01:46.185944 eth0 < 192.168.1.100.4030 > 192.168.1.101.http: S
> 321958821:321958821(0) win 8192 <mss 1460> (DF)
> 16:01:46.185976 eth0 > 192.168.1.101.http >
> 192.168.1.100.4030: R 0:0(0) ack
> 1 win 0 (DF)
> 16:01:46.688855 eth0 < 192.168.1.100.4030 > 192.168.1.101.http: S
> 321958821:321958821(0) win 8192 <mss 1460> (DF)
> 16:01:46.688887 eth0 > 192.168.1.101.http >
> 192.168.1.100.4030: R 0:0(0) ack
> 1 win 0 (DF)
>
> it doesnt look as if it NAT's the ip and forwards it :(
>
> for testing purposes i can connect directly to a real ip
> behind LVS server
>
> Anyone have any ideas why this doesnt work...
>
> thnx
>
> -----------
> Yasser Nabi
> Corporate Support Engineer
> Easynet Ltd
> Tel:  0207 900 4444x4493
> Mail: yasser.nabi@xxxxxxxxxxxxxx
> --------------------------------------------------------------
> --------------
> ------------
> ISPA Best European ISP 1999
> ISPA Best ISP Product 2000
> --------------------------------------------------------------
> --------------
> ------------
> This E mail contains proprietary information some or all of
> which may be
> legally privileged. It is intended for the recipient only. If
> an addressing
> error or transmission error has misdirected this e mail,
> please notify the
> sender immediately. If you are not the intended recipient you must not
> use, disclose, distribute, copy, print or rely on this e mail.
>
> The views expressed in this e mail are those of the author and do not
> necessarily reflect the views of Easynet Ltd.
> --------------------------------------------------------------
> --------------
> ------------
>
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users

<Prev in Thread]	Current Thread	[Next in Thread>
lvs not workimg :(, Yasser Nabi Re: lvs not workimg :(, James Ogley Re: lvs not workimg :(, Julian Anastasov Re: lvs not workimg :(, Radu-Adrian Feurdean Re: lvs not workimg :(, Julian Anastasov Re: lvs not workimg :(, Radu-Adrian Feurdean Re: lvs not workimg :(, Julian Anastasov RE: lvs not workimg :(, Mark Miller <= Re: lvs not workimg :(, Schillaci Re: lvs not workimg :(, Radu-Adrian Feurdean

Previous by Date:	Re: ip_masq_ftp nat passive, Joseph Mack
Next by Date:	RE: ip_masq_ftp nat passive, Jeremy Kusnetz
Previous by Thread:	Re: lvs not workimg :(, Julian Anastasov
Next by Thread:	Re: lvs not workimg :(, Schillaci
Indexes:	[Date] [Thread] [Top] [All Lists]