|
On Tue, Dec 17, 2002 at 11:03:16PM -0500, Matthew S. Crocker wrote:
> On Wed, 18 Dec 2002, Leonard Soetedjo wrote:
>
> >
> > I'm not so sure I get what you mean. Do you mean that, for telnet, even if
> > I
> > have set the fwmark using iptables (let's say to 1), and added
> >
> > ipvsadm -a -f 1 -r RS1:0 -g -w 1
> >
> > The director would still load balance on all ports? i.e., whatever
> > the value of the fwmark, if the port is 0, then director will load
> > balance on every port. So, for example, an incoming port 80 would
> > be load balanced too?
>
> No, I was confused I thought you meant you were selecting all ports
> into the fwmark with an iptables command. I'm pretty sure :0 is
> ignored in this instance.
The LVS kernel code that handles fwmarks really doesn't care about ports
at all. If you want a service to match on specific ports, then you
should set up the iptables rules to only mark packets to that port or
ports.
--
Horms
|
