LVS
lvs-users
[Top] [All Lists]
Google
 
Web LinuxVirtualServer.org
<prev [Date] next> <prev [Thread] next>

RE: iptables and lvs_nat

from [Tim Cronin] [Permanent Link]
To: "'lvs-users@xxxxxxxxxxxxxxxxxxxxxx'" <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: iptables and lvs_nat
From: Tim Cronin <tim@xxxxxxxxxxxxxxx>
Date: Wed, 2 Oct 2002 10:19:22 -0500 
yup, I did that and it works, but is that safe?

-----Original Message-----
From: Martijn Klingens [mailto:mklingens@xxxxxx]
Sent: Wednesday, October 02, 2002 10:01 AM
To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: Re: iptables and lvs_nat


On Wednesday 02 October 2002 17:58, Alex Kramarov wrote:
> Look at my previous email. this doesn't work with lvs (at least for me),
> lvs'ed connections don't seem to register with iptables correctly. 

Hmm, then the only option is the classical non-stateful version:

iptables -I INPUT -p tcp --dport 80 ! --syn -d ${RIP} -j ACCEPT

(Should be INPUT in my other mail too btw, as the LVS box truly has that IP,

not FROWARD, sorry.)
-- 
Martijn


_______________________________________________
LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
or go to http://www.in-addr.de/mailman/listinfo/lvs-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: No buffer space available, Julian Anastasov
Next by Date:  Re: iptables and lvs_nat, Martijn Klingens
Previous by Thread:  Re: iptables and lvs_nat, Martijn Klingens
Next by Thread:  Re: iptables and lvs_nat, Martijn Klingens
Indexes:  [Date] [Thread] [Top] [All Lists]