|
Hello,
On Fri, 4 Jan 2002 andreas.hartmann@xxxxxxxxxx wrote:
>
> I'm running here since half a year linuxvirtualserver / tunneling (2
> directors,
> 2 realserver) within a security zone as ftp-server for about 22000 clients.
> The availability since that time has been 100% :-). Better then all S390-based
> applications in our bussines!
> The peak the system has to manage are about 20000 connects / filetransfers in
> 15 minutes!
>
It's good to hear that you have used LVS successfully for some time.
>
> I've got an additional question:
> Is it possible to manage / distribute in the mentioned system clients, which
> come via masquerading from firewall? This means, they all would come with the
> same source IP.
> I think it shouldn't work because of the persistent option, which I need for
> ftp. All connects would be sent to the same realserver. Or am I wrong?
>
Yes, if the persistent option is setup, all the connections from the same
source IP (such as the masqerading box) will be sent to the same server.
In the layer-4, there is no way to identify which connections are related,
unless we go to the application-layer then maybe we can get some info
(such as http cookie in the web application).
Regards,
Wensong
|
