lvs-users
|
|
lvs-users
|
| To: | mstockda@xxxxxxxxxxxxxx |
|---|---|
| Subject: | Re: LVS-DR, lvs server as gateway for realservers, having trouble |
| Cc: | lvs-users@xxxxxxxxxxxxxxxxxxxxxx |
| From: | Julian Anastasov <ja@xxxxxx> |
| Date: | Fri, 15 Mar 2002 18:48:12 +0200 (EET) |
Hello,
On Fri, 15 Mar 2002 mstockda@xxxxxxxxxxxxxx wrote:
> Bingo!
>
> Now, this probably isn't very secure. Ideally, which interfaces need
> forward_shared? the interface on the real server lan _and_ the external side?
No, you just enabled the feature which works only for the
already selected interfaces. Check it with
ip route get from VIP to 1.2.3.4 iif CHECK_ALL_INTERFACES_HERE
You should enable forward_shared only for interfaces
attached to internal mediums (hubs) and of course, only where
is needed.
#define IN_DEV_FORWARD_SHARED(in_dev) ((in_dev)->cnf.forward_shared &&
ipv4_devconf.forward_shared)
Regards
--
Julian Anastasov <ja@xxxxxx>
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: LVS-DR, lvs server as gateway for realservers, having trouble, mstockda |
|---|---|
| Next by Date: | FYI - {was RE: heartbeat + ldirectord (for LVS)}, Peter Mueller |
| Previous by Thread: | Re: LVS-DR, lvs server as gateway for realservers, having trouble, mstockda |
| Next by Thread: | RE: LVS-DR, lvs server as gateway for realservers, having trouble, Radomski, Mike |
| Indexes: | [Date] [Thread] [Top] [All Lists] |