I have a cluster with 2 machines, 1 director and 1 real server
(eventually the
director will become a server as well ). The problem is, if a client
telnet/ssh
to thpe vip, the client hangs for a while untill the connection
timesout. But,
the connection can been seen of the director. Is it connections are
being accepted
and not forwared? Or something else that I may have missid in the
configuration ?
---------------------------------------------------------------------------------------------------
[mixo@mixo mixo]$ ssh -v root@sompeip
OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 500 geteuid 0 anon 1
debug1: Connecting to someip [someip] port 22.
debug1: temporarily_use_uid: 500/500 (e=0)
debug1: restore_uid
debug1: temporarily_use_uid: 500/500 (e=0)
ssh: connect to address someip port 22: Connection timed out
debug1: restore_uid
----------------------------------------------------------------------------------------------------
From the director :
+++++++++++++++++++++++++++++++++++++++++
[root@dhcp4 root]# /sbin/ipvsadm -L
IP Virtual Server version 0.9.7 (size=65536)
Prot LocalAddress:Port Scheduler Flags
-> RemoteAddress:Port Forward Weight ActiveConn InActConn
TCP client2:ssh rr
-> bashfull:ssh Masq 1 0 2
TCP client2:telnet rr
-> bashfull:telnet Masq 1 0 0
+++++++++++++++++++++++++++++++++++++++++++
#----------lvs_nat.conf------------------------------------
LVSCONF_FORMAT=1.1
LVS_TYPE=VS_NAT
INITIAL_STATE=on
CLEAR_IPVS_TABLES=yes
#
#VIP line format - device[:alias] IP netmask broadcast
#To help avoid namespace collisions with other VIPs, I set alias=last
number of VIP (here 110).
VIP=eth0 lvs2 255.255.255.0 192.168.2.255
#
#DIP line format - device[:alias] IP network netmask broadcast
DIP=eth0 dip 192.168.1.0 255.255.255.0 192.168.1.255
#
#DIRECTOR_GW - packets with src_addr=VIP, dst_addr=0/0 are sent to
DIRECTOR_GW
#to be forwarded to the outside world.
#The script will not neccesarily set up the DIRECTOR_GW as the
director's default gw.
DIRECTOR_GW=client2
#
#SERVICE line format - proto port scheduler IP|name:port[,weight]
[IP|name:port[weight]]
#SERVICE=t telnet rr sneezy:telnet bashfull:telnet dopey:telnet doc:telnet
SERVICE=t telnet rr bashfull:telnet
SERVICE=t ssh rr bashfull:ssh
#
SERVER_NET_DEVICE=eth0
#VS-NAT real-servers do not have a VIP, i.e. there is no SERVER_VIP_DEVICE
#SERVER_VIP_DEVICE=
#SERVER_GW is not user configurable with VS-NAT. script sets SERVER_GW = DIP
#SERVER_GW=
#----------end lvs_nat.conf---------------------------------
|