|
Justin Georgeson wrote:
>
> I guess I thought that's what I was doing with ssh.
ssh is fine (it's a one port service).
> -A -t w.x.y.z:22 -s wlc -p 10360
> -a -t w.x.y.z:22 -r 192.168.1.3:22 -m -w 1
> -A -t w.x.y.z:4444 -s wlc -p 10360
> -a -t w.x.y.z:4444 -r 192.168.1.3:4444 -m -w 1
> -A -t w.x.y.z:1099 -s wlc -p 10360
> -a -t w.x.y.z:1099 -r 192.168.1.3:1099 -m -w 1
> -A -t w.x.y.z:8080 -s wlc -p 10360
> -a -t w.x.y.z:8080 -r 192.168.1.3:8080 -m -w 1
>
> Those are some of the rules I have in /etc/sysconfig/lvs. Runninb
> ipvsadm -Ln shows they are in effect. If I try to ssh from a machine on
> the 192.168.1.0/24 (192.168.1.5) subnet to w.x.y.z, I never get a login
> prompt.
do the normal checks
o can you ping w.x.y.z
o look at the output of ipvsadm as you're attempting to connect
(do you get InActConn entries?)
- http://www.linuxvirtualserver.org/Joseph.Mack/HOWTO/LVS-HOWTO-32.html#ss32.3
o have you turned off icmp redirects
- http://www.linuxvirtualserver.org/Joseph.Mack/HOWTO/LVS-HOWTO-12.html#ss12.12
Joe
--
Joseph Mack PhD, Senior Systems Engineer, SAIC contractor
to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
