|
> Can I combine the director of a LVS-NAT setup with an iptables-based natting
> firewall?
Yes, you are probably just getting yourself locked out with your rules,
which is pretty easy to do. I've started writing rules into the my configure
script but have not turned them on the released version as I didn't finish
the job before I had to turn to other things. Start off with a quiet
machine, log all packets and then access one of the services. Write
rules to accept the packets you want and keep logging the rest. Try another
service... Deny all packets that you know aren't needed for your LVS
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
