|
Sorry It has taken me so long to respond to this, but I just wanted to be
sure...
Even if I manually insert a default route into the realserver, or a 0 route
(0.0.0.0 -> same as default) I still am unable to directly contact the
realservers from the firewall/gateway. Also, from the realservers I am
unable to ping servers outside of my internal network. LVS-DR works just
fine.
I have read throught the configure script and I am not doing anything
different than the script when I set up the route:
route add 0.0.0.0 gw 10.80.1.3 dev eth0 (default route)...
unfortunately, I still am unable to see internet servers or reach the zope
servers after doing this... Is there something simple I am just missing?
Matt.Gregory@xxxxxxxxx wrote:
>
> I posted this once before, but got no responses and I'm really at a loss.
>
> I have an LVS configuration as follows:
>
> <firewall/gateway>
> | /\
> | |
> V |
> <director>/|
> | / |
> | / |
> V / |
> <zope1> <zope2>
>
> before I run the rc.lvs_dr script on the realservers (zope1/2) I can
reach
> them through the firewall without problems. Once I run the IPVS
> configuration script, however, I cannot reach them through the gateway.
This is a feature of the configure software. In general clients are not to
connect directly to the realservers. eg see
http://www.linuxvirtualserver.org/Joseph.Mack/HOWTO/LVS-HOWTO-13.html#ss13.6
However in individual cases there may be reasons to allow clients to
connect
directly to (some ports on) the realservers. The routing rules that the
0.9.x configure script sets up on the realservers are relatively simple
and you should be able to change them after setup by looking at the output
of `netstat -rn`.
If this brings you no joy, contact me directly off-line.
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
_______________________________________________
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://www.in-addr.de/mailman/listinfo/lvs-users
--
NOTICE: This e-mail message and all attachments transmitted with it may
contain legally privileged and confidential information intended solely
for the use of the addressee. If the reader of this message is not the
intended recipient, you are hereby notified that any reading,
dissemination, distribution, copying, or other use of this message or
its attachments, hyperlinks, or any other files of any kind is strictly
prohibited. If you have received this message in error, please notify
the sender immediately by telephone (865-218-2000) or by a reply to this
electronic mail message and delete this message and all copies and
backups thereof.
|
