|
Hello,
On Thu, 31 May 2001, hotcola wrote:
> > Follow the steps mentioned in this mail:
> >
> >http://marc.theaimsgroup.com/?l=linux-virtual-server&m=99065801508035&w=2
> >
> Follow the steps in the article, I've made some progress.
It seems not much :) Read again the article: Q.3 - A.4
How is the rp_filter protection set?:
/proc/sys/net/ipv4/conf/all/rp_filter
/proc/sys/net/ipv4/conf/eth0/rp_filter
Why the packets don't come to eth1? It seems eth0/rp_filter=0
and then there is a ipchains restriction on eth0 not to allow the
client packets. The best solution is when using the internal and the
external card in same hub to enable the rp_filter protection on
all interfaces. Then you don't need ipchains rules in eth0.
> On the director:
>
> [root@alpha2 /root]# tcpdump -ln host 192.168.193.158
> Kernel filter, protocol ALL, datagram packet socket
> tcpdump: listening on all devices
> 16:48:17.365911 eth0 < 192.168.193.158.3597 > 192.168.193.224.www: S
> 3688807335:
> 3688807335(0) win 16384 <mss 1460,nop,nop,sackOK> (DF)
> 16:48:20.315130 eth0 < 192.168.193.158.3597 > 192.168.193.224.www: S
> 3688807335:
> 3688807335(0) win 16384 <mss 1460,nop,nop,sackOK> (DF)
> 16:48:26.325872 eth0 < 192.168.193.158.3597 > 192.168.193.224.www: S
> 3688807335:
> 3688807335(0) win 16384 <mss 1460,nop,nop,sackOK> (DF)
The requests are dropped from director.
> The request is serverd by the lvs box.
I don't understand the previous line. What you mean? I don't see
any packets to leave the director. "served" == "received from" ?
Regards
--
Julian Anastasov <ja@xxxxxx>
|
